This repository has been archived by the owner on Dec 13, 2022. It is now read-only.

21.04.18

tuntoja released this 21 Sep 07:08

· 1133 commits to develop since this release

6cbd3ee

21.04.18

Release date: September 20, 2022

Bug Fixes

[Configuration] Fixed an error in the Configuration > Services > Templates menu causing HTML code to be displayed
[Core] Cleaned code in forMyAccount
[Core] Corrected escapeSecure usage
[Widgets] Restored possibility to not select a poller in preferences

Security fixes

[Administration] Applied validation of format with media synchronization
[Administration] Sanitized and bound Centreon ACL class queries
[CLAPI] Added a check to verify that the user has the admin role
[Configuration] Fixed SQLi in poller's resource creation
[Configuration] Sanitized and bound queries in centreonConnector file
[Configuration] Sanitized and bound queries in contactgroup file
[Configuration] Sanitized and bound queries in listServiceCategories file
[Configuration] Sanitized and bound queries in listVirtualMetrics file
[Configuration] Sanitized and bound queries in service argumentsXml file
[Configuration] Sanitized and bound queries in service host categories file
[Configuration] Sanitized and bound queries in servicegroup_dependency file
[Monitoring] Fixed XSS vulnerability in deprecated services status details page

Assets 2