Commit graph

17 commits

Author SHA1 Message Date
Miraty
973a129079 Add type in functions signatures 2023-06-20 00:36:58 +02:00
Miraty
7f7bcadb58 Fix important vulnerability in reg/ds.php + exescape
In page reg/ds.php, POST parameter 'key' was directly sent to shell, allowing for remote arbitrary commands execution.

This commit fixes this vulnerability, and uses a new function to automatically escape every shell command arguments as an additional generic protection.
2023-06-19 02:15:43 +02:00
Miraty
e4ae765486 init.php + jobs + job to delete old testing accounts 2023-06-08 17:36:44 +02:00
Miraty
a83ae30ce7 Fix zone deletion process (again) 2023-05-06 02:39:19 +02:00
Miraty
c05c16a516 --blocking for knotc everywhere 2023-05-03 01:38:50 +02:00
Miraty
81229a5e33 nsDeleteZone: Fix zone deletion process 2023-04-27 22:18:03 +02:00
Miraty
5af557f630 Better return code checking, --force for zone-purge 2023-04-27 03:24:34 +02:00
Miraty
335b826559 Gettext internationalization and english translation 2023-01-21 01:27:52 +01:00
Miraty
73c137aaba Split pages/ between pg-act/ and pg-view/ 2022-12-20 21:17:03 +01:00
Miraty
f15681999b Internal ID, Argon2 for usernames, username changes 2022-11-30 23:12:42 +01:00
Miraty
18d976217b Use single quotes instead of double quotes 2022-11-20 15:11:54 +01:00
Miraty
e3f358a62c Direct zone file edition through <textarea> 2022-11-20 01:05:03 +01:00
Miraty
763762f08b fn success/userError/serverError > output($code) 2022-09-15 19:18:48 +02:00
Miraty
6dbc63a36a Add form to delete account
Move service-specific deletion code to functions
2022-06-18 04:22:05 +02:00
Miraty
9bcf3a57a2 Add formatAbsoluteDomain, remove regGetUpperDomain 2022-06-15 15:30:18 +02:00
Miraty
d9440231ac del-http-onion.php + query() 2022-06-11 23:42:48 +02:00
Miraty
fac61531dd Create fn/ directory 2022-05-31 19:12:14 +02:00
Renamed from ns.php (Browse further)