github/vesta
1
0
Fork 0
mirror of https://github.com/serghey-rodin/vesta.git synced 2025-07-15 01:23:21 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions
4986 commits 55 branches 18 tags 94 MiB
Commit graph

1419 commits

Author SHA1 Message Date
Alexander
c12c21ec8b React js integration with vesta control panel. 2021-10-12 21:36:52 +03:00
Anton Reutov
960e3a20df GUI Change default vesta port 2021-08-24 17:33:24 +03:00
Anton Reutov
7a6dc72f29 GUI Change default vesta port 2021-08-24 17:28:47 +03:00
Anton Reutov
6225820910
Fix for "Broken or Risky Cryptographic Algorithm" 
Fix for reflected XSS vulnerability, found by Brian Semrau
 2021-08-16 14:59:41 +03:00
Anton Reutov
2fc0dc34fe
Fix for "Broken or Risky Cryptographic Algorithm" 2021-08-16 14:56:37 +03:00
Anton Reutov
6fdfef4e88
Fix for possible file inclusion vulnerability in i18n.php 2021-08-16 12:36:08 +03:00
Anton Reutov
0403b0c4a3
fix backend_template for nginx 2021-08-12 20:03:19 +03:00
Anton Reutov
d97adaeb6a
Disabling login with 'root' 2021-07-28 14:19:12 +03:00
Anton Reutov
c582ff3766
Checking period value in /list/rrd/ 2021-07-27 22:19:45 +03:00
Anton Reutov
374d6c6b19
htmlentities() for token 2021-07-27 22:01:10 +03:00
Anton Reutov
1c801b2d60
Fix for downloading backup of other users 2021-07-27 21:50:33 +03:00
Anton Reutov
1ff5208968
Preventing admin to do loginas action without token 2021-07-27 20:58:34 +03:00
Anton Reutov
8a60b257a2
Preventing uploads from other origin 2021-07-27 14:56:35 +03:00
Anton Reutov
ea1e22613e
Restrict v-make-tmp-file to tmp folder 2021-07-27 14:42:25 +03:00
Anton Reutov
d0a21b4859
Ensure HTML will not be displayed in list log page 2021-07-26 17:08:17 +03:00
myrevery
8d5c2e2e8e
Update cn.php 
Refine some details.
 2020-09-03 12:49:00 -07:00
myrevery
ce5d209c13
Update cn.php 2020-08-25 14:58:01 -07:00
dpeca
c377e19df8 Adding escapeshellarg on few more places in php code 2020-06-23 19:06:25 +02:00
dpeca
58807feb80
Adding port to reset password link 2020-03-29 18:13:22 +02:00
dpeca
c3c4de43d6
Preventing manipulation with $_SERVER['HTTP_HOST'] 2020-03-23 17:28:55 +01:00
Anton Reutov
931fb5beeb
Merge pull request #1944 from nothinux/i18n-php 
update id.php
 2019-10-21 13:25:31 +03:00
dpeca
f0782d1f82
Fixing broken autoreply output 
Broken in 0831a198b8 (diff-f07da7937954ae08bdb2e7379655ae29)
@sergio-nadal
 2019-10-03 16:15:36 +02:00
Robin Dirksen
ec8631b2d2
Update nl.php 2019-10-01 16:28:03 +02:00
Taufik Mulyana
9947b17144 update id.php 2019-10-01 21:18:38 +07:00
dpeca
e82ad200b7
Translated added string in sr.php 2019-08-18 16:37:00 +02:00
Serghey Rodin
b17b4b205d removed unnecessary single quotes for security reasons / thanks to Andrea Cardaci 2019-08-07 18:46:40 +03:00
myrevery
9c42ce85de
Update cn.php 
Refine some details.
 2019-07-15 06:17:02 -07:00
Alexandr Loskutov
36c12c618b
Merge pull request #1902 from darkworks/urdu_translation 
Update ur.php
 2019-06-28 17:32:40 +03:00
darkworks
0b0bcf6b15
Use Web Domain SSL Certificate -> ur.php 
updated ur.php translation
 2019-06-20 23:11:23 +05:00
myrevery
a6028ee4e9
Update cn.php 
Refine some details.
 2019-06-10 16:10:32 +08:00
Serghey Rodin
faf7612c7e
Merge pull request #1349 from serghey-rodin/add-caa-record 
Add CAA DNS record
 2019-05-14 10:57:13 +03:00
Anton Reutov
0031c93535
Merge pull request #1865 from sergio-nadal/security-fixes 
Security fixes - CSRF / Command Injection / XSS
 2019-04-22 19:48:00 +03:00
moucho
5df4dc819f Updated Spanish translation 2019-04-22 14:47:32 +02:00
Sergio
7226a8991f Fix some XSS. 2019-04-21 02:18:24 +02:00
Sergio
0831a198b8 Fixed several Command Injection. 2019-04-21 01:51:29 +02:00
Sergio
7603cdea7a Add the validation of the CSRF token. It is missing in some cases when it is sent by GET or POST. 2019-04-21 00:11:36 +02:00
moucho
97a3b40047 Spanish translation update 2019-04-20 13:47:38 +02:00
Serghey Rodin
425e9f2483 18$ instead of 21$ 2019-04-16 12:53:58 +03:00
Serghey Rodin
ab95d5d88d removing single quote from escapeshellarg calls 2019-04-15 10:51:40 +03:00
Serghey Rodin
c28c5d29a3 setting content type to fix possible XSS attack vector 2019-04-12 17:21:28 +03:00
myrevery
a181433231
Update cn.php 
Refine some details.
Format code and translate new keywords.
 2019-03-31 05:50:02 +08:00
Anton Reutov
1637f737e1
Merge pull request #1711 from clarkchentw/patch-2 
Traditional Chinese - TW, update to match en.php
 2019-03-20 12:44:20 +03:00
Serghey Rodin
6a9b7d3507 Use Web Domain SSL Certificate -> i18n 2019-03-14 14:34:38 +02:00
Serghey Rodin
80ebfc0daa frontend: user domain vesta ssl certificate support 2019-03-14 00:44:32 +02:00
myrevery
2959165e1a
Update cn.php 
Refine some details.
 2019-03-11 06:43:33 +08:00
Anton Reutov
43fe755f0b
Merge pull request #1822 from fifi/fix-german-translation 
fix german translation, forwarded mail
 2019-02-25 22:36:02 +03:00
Anton Reutov
b510f55e88
a new pricing for FileManager & SFTP chroot plugin 
a new pricing for FileManager & SFTP chroot plugin
 2019-02-25 16:08:40 +03:00
Marcus Viefeld
bad8ee8042 fix german translation, forwarded mail 2019-02-14 05:41:16 +01:00
Juho Räsänen
1725a61491 Finnish translation updated and some changes 
New strings translated and some small changes.
 2019-02-12 22:05:47 +02:00
devius
2d96e3631f
Add missing translations 
I have found and translated last missing Georgian versions for strings
 2019-02-06 17:23:58 +04:00