github/myvesta
1
0
Fork 0
mirror of https://github.com/myvesta/vesta synced 2025-08-21 05:44:08 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge pull request #288 from 0x0d/master

Browse source 
Security vulnerabilities fix
This commit is contained in:
Serghey Rodin 2015-01-19 16:51:00 +02:00
commit df9647bce8
2 changed files with 10 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

8
src/v-check-user-password.c
View file

@ -45,10 +45,16 @@ int main (int argc, char** argv) {
/* open log file */
FILE* pFile = fopen ("/usr/local/vesta/log/auth.log","a+");
if (NULL == pFile) {
printf("Error: can not open file %s \n", argv[0]);
printf("Error: can not open file /usr/local/vesta/log/auth.log \n");
exit(12);
}
int len = 0;
if(strlen(argv[1]) >= 100) {
printf("Too long username\n");
exit(1);
}
/* parse user argument */
struct passwd* userinfo = getpwnam(argv[1]);
if (NULL != userinfo) {

5
web/api/index.php
View file

@ -14,10 +14,11 @@ if (isset($_POST['user']) || isset($_POST['hash'])) {
$v_user = escapeshellarg($_POST['user']);
$v_password = escapeshellarg($_POST['password']);
exec(VESTA_CMD ."v-check-user-password ".$v_user." ".$v_password." '".$_SERVER["REMOTE_ADDR"]."'", $output, $auth_code);
$v_ip_addr = escapeshellarg($_SERVER["REMOTE_ADDR"]);
exec(VESTA_CMD ."v-check-user-password ".$v_user." ".$v_password." '".$v_ip_addr."'", $output, $auth_code);
} else {
$key = '/usr/local/vesta/data/keys/' . basename($_POST['hash']);
if (file_exists($key)) {
if (file_exists($key) && is_file($key)) {
$auth_code = '0';
}
}