Skip to content

Navigation Menu

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

This repository has been archived by the owner on Dec 13, 2022. It is now read-only.

centreon / centreon-archived Public archive

Notifications You must be signed in to change notification settings
Fork 240
Star 576

Code
Issues 671
Pull requests 58
Discussions
Actions
Projects
Wiki
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Projects
Wiki
Security
Insights

Fix: Sanitize and bind Media import #11772

Merged

emabassi-ext merged 1 commit into develop from MON-14973-sanitize-and-bind-media-import

Sep 19, 2022

Merged

Fix: Sanitize and bind Media import #11772

emabassi-ext merged 1 commit into develop from MON-14973-sanitize-and-bind-media-import

Sep 19, 2022

Conversation 1 Commits 1 Checks 0 Files changed

Conversation

Copy link

Contributor

emabassi-ext commented Sep 15, 2022

Description

Queries should be sanitized (if possible) and bound using PDO statement to reduce attack surface and clean legacy code

Where:

www/class/centreonMedia.class.php

Line: 423

Fixes # MON-14973

Type of change

Patch fixing an issue (non-breaking change)
New functionality (non-breaking change)
Breaking change (patch or feature) that might cause side effects breaking part of the Software

Target serie

21.04.x
21.10.x
22.04.x
22.10.x (master)

How this pull request can be tested ?

Add a new image in Centreon from “Administration > Parameters > Images”

Valide that image have been imported

Checklist

Community contributors & Centreon team

I have followed the coding style guidelines provided by Centreon
I have commented my code, especially new classes, functions or any legacy code modified. (docblock)
I have commented my code, especially hard-to-understand areas of the PR.
I have rebased my development branch on the base branch (master, maintenance).

Sorry, something went wrong.

All reactions


          sanitize and bind media import

emabassi-ext added the area/backend label

emabassi-ext requested review from kduret, jeremyjaouen, hyahiaoui-ext, dmyios, wtermellil and a team

September 15, 2022 15:44

emabassi-ext self-assigned this

dmyios approved these changes

View reviewed changes

Copy link

sonarqube-decoration bot commented Sep 17, 2022

SonarQube Quality Gate

7 Bugs
0 Vulnerabilities
0 Security Hotspots ( 100.0% 100.0% reviewed)
2047 Code Smells

0.0% Coverage
4.1% Duplication

All reactions

Sorry, something went wrong.

jeremyjaouen approved these changes

View reviewed changes

emabassi-ext merged commit 999711d into develop

emabassi-ext deleted the MON-14973-sanitize-and-bind-media-import branch

September 19, 2022 08:00

emabassi-ext added a commit that referenced this pull request


          Fix: Sanitize and bind Media import (#11772)

746028c

emabassi-ext added a commit that referenced this pull request


          Fix: Sanitize and bind Media import (#11772)

2455a74

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

dmyios dmyios approved these changes

jeremyjaouen jeremyjaouen approved these changes

kduret Awaiting requested review from kduret

hyahiaoui-ext Awaiting requested review from hyahiaoui-ext

wtermellil Awaiting requested review from wtermellil

Assignees

Labels

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

Add this suggestion to a batch that can be applied as a single commit. This suggestion is invalid because no changes were made to the code. Suggestions cannot be applied while the pull request is closed. Suggestions cannot be applied while viewing a subset of changes. Only one suggestion per line can be applied in a batch. Add this suggestion to a batch that can be applied as a single commit. Applying suggestions on deleted lines is not supported. You must change the existing code in this line in order to create a valid suggestion. Outdated suggestions cannot be applied. This suggestion has been applied or marked resolved. Suggestions cannot be applied from pending reviews. Suggestions cannot be applied on multi-line comments. Suggestions cannot be applied while the pull request is queued to merge. Suggestion cannot be applied right now. Please check back later.

Footer

© 2025 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.