fix(secu): rce vulnerability when using command's testing feature #7230

sc979 · 2019-02-26T15:22:17Z

Original author : @gquere
Adding : bindValue methods to prevent SQL injection and PSR2

Authenticated RCE

QA Team (Quality Assurance) with tests.
reviewers to understand what are the stakes of the pull request.
Check :
https://github.com/centreon/centreon/pull/7099

Fixes # (issue) : none

Ask me in private please.

I followed the coding style guidelines provided by Centreon.
I have rebased my development branch on the base branch (master, maintenance).
I have updated the release note in dedicated temporary section. *

I have made sure that the unit tests related to the story are successful.
I have made sure that unit tests covers 80% of the code written for the story.
I have made sure that acceptance tests related to the story are successful (local and CI)

sc979 · 2019-02-26T16:10:40Z

I'm closing this PR, as I removed the author commit :'(

sc979 · 2019-02-26T16:12:49Z

sc979 added 3 commits February 26, 2019 16:10

fix: rce vulnerability when using testing feature

3ad9493

release note for 18.10.4

b0e871d

style(PSR2)

8d1aa90

sc979 closed this Feb 26, 2019

sc979 deleted the MON-3310-authenticated-rce-minplay-command branch February 26, 2019 16:10