In-Portal Issue Tracker

Welcome to the In-Portal Open Source CMS Issue Tracker! This is a central management / tracking tool for all types of tasks / issues / bugs for the In-Portal Project. Before reporting any issues, please make sure to read the Guide into Issue Tracker and How to Properly Test and Report Bugs!
Main | My View | View Issues | Change Log | Roadmap | Docs | Wiki | Repositories
  

Viewing Issue Simple Details Jump to Notes ] Wiki ]  Related Changesets ] View Advanced ] Issue History ] Print ]
ID Category Type Reproducibility Date Submitted Last Update
0000159 [In-Portal CMS] Security bug report always 2009-07-31 02:45 2009-10-03 07:56
Reporter alex View Status public Project Name In-Portal CMS
Assigned To Dmitry Developer
Priority critical Resolution fixed Fixed in Version 5.0.1
Status closed Product Version 4.3.9 Target Version 5.0.1
Time EstimateNo estimate
Summary 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
Description Currently there is possible to execute individual In-Portal files. Usually people doesn't do that, but just in case I propose to add mentioned later code to all files with ".php" extension, that doesn't contain class declarations or are unit configs.

Code: defined('FULL_PATH') or die('restricted access!');
Additional Information
Tags No tags attached.
Reference
Change Log Message
Estimate Points 0
Attached Files

- Relationships Relation Graph ] Dependency Graph ]

-  Notes
User avatar (0000206)
Dmitry (manager)
2009-07-31 14:11

 We need to research on options when we use - ALL PHP files (classes and so on) or just standalone files (as described in this Task)

# Check to ensure this file is loaded within the rest of the framework
defined('FULL_PATH') or die('This file is a part of In-Portal);
User avatar (0000293)
Dmitry (manager)
2009-08-09 18:12

 After further research, the following actions should be taken:

1. Plant .htaccess (with "Deny from all") in

- core/units, core/kernel, core/install
- [module]/units, [module]/install
- admin/system_presets (for site configs)


2. Add check

defined('FULL_PATH') or die('This file is a part of In-Portal');

to

a. all Classes,
b. all /install.php files inside:

[CODE]
else {
 // install, using installation wizard
 $toolkit =& $this->toolkit;
 /* @var $toolkit kInstallToolkit */
}
[/CODE]

3. Move tools/.htaccess to root of installation .htaccess-dist

4. Rename system/.htaccess-sample to system/.htaccess file.
User avatar (0000294)
Dmitry (manager)
2009-08-09 18:13

 What you think on this? This will add more security on the rest of the system.
User avatar (0000296)
alex (manager)
2009-08-10 16:17

 Lets do it.
User avatar (0000297)
Dmitry (manager)
2009-08-10 17:09

 Alex,

Please add a check inside ALL modules Install.php script to make sure ONLY "root" user is allowed to perform the installation (fully run install.php file) and all other requests die.
User avatar (0000298)
Dmitry (manager)
2009-08-10 17:24

 Fix committed to 5.0.x branch. Commit Message:

1. Fixes 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Added exclusion for Debugger
User avatar (0000299)
Dmitry (manager)
2009-08-10 17:24

 Fix committed to 5.0.x branch. Commit Message:

1. Fixes 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Minor changes
User avatar (0000300)
Dmitry (manager)
2009-08-10 17:25

 Ups Resolved by mistake - reopening
User avatar (0000323)
Dmitry (manager)
2009-08-16 20:58

 Added security check " defined('FULL_PATH') or die('restricted access!'); "

1. Tests shown that we have about 450 defined checked which execute in

Did in 0.0003969669342041 - 0.0004969669342041 seconds

2. Taking into account that we'll grow and can reach easily 1000, it showed execution in ~0.008 sec.
User avatar (0000327)
Dmitry (manager)
2009-08-16 21:19

 Completed in 5.0.1
User avatar (0000709)
administrator (administrator)
2009-10-03 07:56

 Closing issues from 5.0.1 version, because version was already released.

- Related Changesets
In-Portal CMS: 5.0.x r12329
Timestamp: 2009-08-18 00:45:08
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Adding DEFINED FULL_PATH security-check
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/admin_admin.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/agents_agent.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/ban_rules_ban-rule.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/categories_c.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/change_logs_change-log.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/email_logs_email-log.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/email_messages_emailmessages.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/files_file.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/files_l-file.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/form_fields_formflds.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/form_submissions_formsubs.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/forms_form.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/groups_g.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/images_img.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/images_l-img.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/images_u-img.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/languages_lang.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/links_l.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/mailing_lists_mailing-list.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/modules_mod.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/phrases_phrases.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/related_searches_c-search.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/related_searches_search.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/relationship_c-rel.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/relationship_l-rel.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/relationship_rel.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/reviews_l-rev.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/reviews_rev.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/search_logs_search-log.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/sections_core-sections.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/selectors_selectors.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/session_logs_session-log.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/settings.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/skins_skin.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/spelling_dictionary_spelling-dictionary.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/stop_words_stop-word.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/stylesheets_css.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/theme_files_theme-file.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/themes_theme.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/thesaurus_thesaurus.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/translator_trans.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/user_groups_g-ug.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/user_groups_u-ug.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/users_u.php Diff ] File ]
mod - /in-portal/branches/5.0.x/admin/system_presets/simple/visits_visits.php Diff ] File ]
Modules :: In-News: 5.0.x r12305
Timestamp: 2009-08-16 20:54:45
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Adding DEFINED FULL_PATH security-check
mod - /in-news/branches/5.0.x/in-news/install/prerequisites.php Diff ] File ]
mod - /in-news/branches/5.0.x/in-news/install/upgrades.php Diff ] File ]
mod - /in-news/branches/5.0.x/in-news/units/articles/articles_config.php Diff ] File ]
mod - /in-news/branches/5.0.x/in-news/units/articles/articles_event_handler.php Diff ] File ]
mod - /in-news/branches/5.0.x/in-news/units/articles/articles_tag_processor.php Diff ] File ]
Modules :: In-Link: 5.0.x r12304
Timestamp: 2009-08-16 20:54:29
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Adding DEFINED FULL_PATH security-check
mod - /in-link/branches/5.0.x/in-link/constants.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/install/prerequisites.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/install/upgrades.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/helpers/helpers_config.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/helpers/link_helper.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/l-visits/l-visit_eh.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/l-visits/l-visits_config.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/link_validation/link_validation_config.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/link_validation/link_validation_eh.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/link_validation/link_validation_tp.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/links/link_tag_processor.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/links/links_config.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/links/links_event_handler.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/listing_types/listing_types_config.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/listing_types/listing_types_event_handler.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/listing_types/listing_types_tag_processor.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/listings/listings_config.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/listings/listings_event_handler.php Diff ] File ]
mod - /in-link/branches/5.0.x/in-link/units/listings/listings_tag_processor.php Diff ] File ]
Modules :: In-Commerce: 5.0.x r12303
Timestamp: 2009-08-16 20:54:03
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Adding DEFINED FULL_PATH security-check
mod - /in-commerce/branches/5.0.x/in-commerce/add_to_cart.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/gw_notify.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/install/prerequisites.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/install/upgrades.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/addresses/addresses_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/addresses/addresses_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/addresses/addresses_item.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/addresses/addresses_list.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/addresses/addresses_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliate_payment_types/affiliate_payment_types_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliate_payment_types/affiliate_payment_types_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliate_payments/affiliate_payments_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliate_payments/affiliate_payments_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliate_payments/affiliate_payments_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliate_plans/affiliate_plans_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliate_plans/affiliate_plans_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliate_plans_brackets/affiliate_plans_brackets_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliate_plans_brackets/affiliate_plans_brackets_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliate_plans_brackets/affiliate_plans_brackets_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliate_plans_items/affiliate_plans_items_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliate_plans_items/affiliate_plans_items_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliate_plans_items/affiliate_plans_items_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliates/affiliates_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliates/affiliates_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/affiliates/affiliates_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/brackets/brackets_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/brackets/brackets_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/brackets/brackets_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/brackets/globals.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/coupon_items/coupon_items_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/coupon_items/coupon_items_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/coupon_items/coupon_items_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/coupons/coupons_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/coupons/coupons_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/coupons/coupons_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/currencies/currencies_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/currencies/currencies_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/currencies/currencies_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/currencies/currency_rates.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/destinations/destinations_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/destinations/dst_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/discount_items/discount_items_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/discount_items/discount_items_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/discount_items/discount_items_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/discounts/discounts_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/discounts/discounts_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/downloads/download_helper.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/downloads/downloads_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/files/files.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/files/files_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/files/files_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateway_field_values/gateway_field_values_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gateways_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/atosorigin.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/authorizenet.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/google_checkout.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/gw_base.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/ideal_nl.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/multicards.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/notify_scripts/atosorigin_notify.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/notify_scripts/google_checkout_notify.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/notify_scripts/google_checkout_shippings.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/notify_scripts/multicards_notify.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/notify_scripts/paybox_notify.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/notify_scripts/sella_error.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/notify_scripts/sella_notify.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/notify_scripts/sella_ok.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/notify_scripts/verisign_pflink_notify.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/paybox.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/paymentech.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/paypal.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/paypal_direct.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/rightconnect.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/sella_guestpay.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/verisign_pflink.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_classes/worldpay.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gateways/gw_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gift_certificates/gift_certificates_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gift_certificates/gift_certificates_eh.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/gift_certificates/gift_certificates_tp.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/manufacturers/manufacturers_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/manufacturers/manufacturers_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/manufacturers/manufacturers_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/order_items/order_items_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/order_items/order_items_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/order_items/order_items_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/orders/orders_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/orders/orders_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/orders/orders_item.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/orders/orders_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/payment_type/payment_type_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/payment_type/payment_type_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/payment_type/payment_type_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/payment_type_currencies/payment_type_currencies_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/payment_type_currencies/payment_type_currencies_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/payment_type_currencies/payment_type_currencies_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/pricing/globals.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/pricing/pricing_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/pricing/pricing_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/pricing/pricing_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/product_option_combinations/product_option_combinations_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/product_option_combinations/product_option_combinations_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/product_option_combinations/product_option_combinations_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/product_option_combinations/product_option_formatters.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/product_option_combinations/products_option_combination_item.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/product_options/product_options_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/product_options/product_options_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/product_options/product_options_helper.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/product_options/product_options_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/products/products_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/products/products_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/products/products_item.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/products/products_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/reports/reports_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/reports/reports_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/reports/reports_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/shipping/shipping_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/shipping/shipping_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/shipping/shipping_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/shipping_costs/shipping_costs_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/shipping_costs/shipping_costs_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/shipping_quote_engines/custom_shipping_quote_engine.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/shipping_quote_engines/intershipper.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/shipping_quote_engines/shipping_quote_collector.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/shipping_quote_engines/shipping_quote_engine.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/shipping_quote_engines/shipping_quote_engine_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/shipping_quote_engines/shipping_quote_engines_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/shipping_quote_engines/usps.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/taxes/taxes_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/taxes/taxes_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/taxes/taxes_tag_processor.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/taxesdestinations/taxes_dst_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/taxesdestinations/taxesdestinations_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/zones/zones_config.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/zones/zones_event_handler.php Diff ] File ]
mod - /in-commerce/branches/5.0.x/in-commerce/units/zones/zones_tag_processor.php Diff ] File ]
Modules :: In-Bulletin: 5.0.x r12302
Timestamp: 2009-08-16 20:53:35
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Adding DEFINED FULL_PATH security-check
mod - /in-bulletin/branches/5.0.x/in-bulletin/constants.php Diff ] File ]
mod - /in-bulletin/branches/5.0.x/in-bulletin/install/prerequisites.php Diff ] File ]
mod - /in-bulletin/branches/5.0.x/in-bulletin/install/upgrades.php Diff ] File ]
mod - /in-bulletin/branches/5.0.x/in-bulletin/units/censorship/censorship_config.php Diff ] File ]
mod - /in-bulletin/branches/5.0.x/in-bulletin/units/emoticons/emoticons_config.php Diff ] File ]
mod - /in-bulletin/branches/5.0.x/in-bulletin/units/helpers/helpers_config.php Diff ] File ]
mod - /in-bulletin/branches/5.0.x/in-bulletin/units/poll_answers/poll_answers_config.php Diff ] File ]
mod - /in-bulletin/branches/5.0.x/in-bulletin/units/poll_comments/poll_comments_config.php Diff ] File ]
mod - /in-bulletin/branches/5.0.x/in-bulletin/units/polls/polls_config.php Diff ] File ]
mod - /in-bulletin/branches/5.0.x/in-bulletin/units/posts/posts_config.php Diff ] File ]
mod - /in-bulletin/branches/5.0.x/in-bulletin/units/private_message_body/private_message_body_config.php Diff ] File ]
mod - /in-bulletin/branches/5.0.x/in-bulletin/units/private_messages/private_messages_config.php Diff ] File ]
mod - /in-bulletin/branches/5.0.x/in-bulletin/units/topics/topics_config.php Diff ] File ]
Modules :: Custom: 1.0.x r12301
Timestamp: 2009-08-16 20:53:17
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Adding DEFINED FULL_PATH security-check
mod - /custom/branches/1.0.x/custom/units/helpers/helpers_config.php Diff ] File ]
mod - /custom/branches/1.0.x/custom/units/helpers/sample_helper.php Diff ] File ]
mod - /custom/branches/1.0.x/custom/units/sections/custom_eh.php Diff ] File ]
mod - /custom/branches/1.0.x/custom/units/sections/e_link_eh.php Diff ] File ]
mod - /custom/branches/1.0.x/custom/units/sections/e_link_tp.php Diff ] File ]
mod - /custom/branches/1.0.x/custom/units/sections/e_product_eh.php Diff ] File ]
mod - /custom/branches/1.0.x/custom/units/sections/e_product_tp.php Diff ] File ]
mod - /custom/branches/1.0.x/custom/units/sections/e_user_eh.php Diff ] File ]
mod - /custom/branches/1.0.x/custom/units/sections/e_user_tp.php Diff ] File ]
mod - /custom/branches/1.0.x/custom/units/sections/sections_config.php Diff ] File ]
mod - /custom/branches/1.0.x/custom/units/widgets/widget_eh.php Diff ] File ]
mod - /custom/branches/1.0.x/custom/units/widgets/widget_tp.php Diff ] File ]
mod - /custom/branches/1.0.x/custom/units/widgets/widgets_config.php Diff ] File ]
In-Portal CMS: 5.0.x r12299
Timestamp: 2009-08-16 20:51:27
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Adding DEFINED FULL_PATH security-check
mod - /in-portal/branches/5.0.x/core/install/install_toolkit.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/install/prerequisites.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/install/upgrades.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/application.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/constants.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/db/db_connection.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/db/db_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/db/db_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/db/dbitem.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/db/dblist.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/event_manager.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/globals.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/kbase.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/languages/phrases_cache.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/nparser/compiler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/nparser/nparser.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/nparser/nparser_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/nparser/ntags.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/parser/construct_tags.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/parser/tags.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/parser/template.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/parser/template_parser.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/processors/main_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/processors/tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/session/session.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/startup.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/utility/adodb-time.inc.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/utility/cache.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/utility/debugger.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/utility/email_send.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/utility/event.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/utility/factory.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/utility/filters.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/utility/formatters/formatters_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/utility/http_query.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/utility/multibyte.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/utility/params.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/utility/socket.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/utility/temp_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/kernel/utility/unit_config_reader.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/admin/admin_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/admin/admin_events_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/admin/admin_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/agents/agent_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/agents/agents_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/ban_rules/ban_rules_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/captcha/captcha_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/captcha/captcha_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/categories/cache_updater.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/categories/categories_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/categories/categories_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/categories/categories_item.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/category_items/category_items_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/category_items/category_items_dbitem.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/category_items/category_items_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/category_items/category_items_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/config_search/config_search_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/config_search/config_search_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/config_search/config_search_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/configuration/configuration.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/configuration/configuration_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/configuration/configuration_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/configuration/configuration_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/content/content_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/content/content_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/custom_data/custom_data_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/custom_data/custom_data_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/custom_fields/custom_fields_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/custom_fields/custom_fields_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/custom_fields/custom_fields_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/email_events/email_events_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/email_events/email_events_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/email_messages/email_message_tp.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/email_messages/email_messages_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/email_messages/email_messages_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/email_queue/email_queue_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/email_queue/email_queue_tp.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/favorites/favorites_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/favorites/favorites_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/fck/fck_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/fck/fck_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/fck/fck_tp.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/files/file_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/files/file_tp.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/files/files_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/form_fields/form_fields_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/form_fields/form_fields_tp.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/form_submissions/form_submissions_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/form_submissions/form_submissions_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/forms/forms_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/forms/forms_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/forms/forms_tp.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/brackets.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/cat_dbitem.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/cat_dbitem_export.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/cat_dblist.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/cat_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/cat_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/country_states.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/custom_fields.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/general_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/captcha_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/category_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/chart_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/clipboard_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/col_picker_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/controls/controls_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/controls/edit_picker_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/controls/minput_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/count_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/csv_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/curl_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/fck_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/file_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/filenames_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/geocode_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/helpers_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/image_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/json_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/language_import_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/mailing_list_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/mod_rewrite_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/modules.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/multilanguage.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/permissions_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/priority_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/rating_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/recursive_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/search_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/sections_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/skin_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/spam_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/helpers/themes_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/inp1_parser.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/inp_ses_storage.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/model/DataSet.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/model/Point.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/model/XYDataSet.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/model/XYSeriesDataSet.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/axis/Axis.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/axis/Bound.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/caption/Caption.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/chart/BarChart.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/chart/Chart.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/chart/LineChart.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/chart/PieChart.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/chart/VerticalBarChart.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/color/Color.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/color/ColorSet.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/color/Palette.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/plot/Plot.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/primitive/Padding.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/primitive/Primitive.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/primitive/Rectangle.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/libchart/classes/view/text/Text.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/general/xml_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/groups/group_tp.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/groups/groups_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/groups/groups_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/groups/groups_item.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/help/help_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/help/help_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/help/help_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/images/image_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/images/image_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/images/images.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/images/images_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/languages/languages_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/languages/languages_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/languages/languages_item.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/languages/languages_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/logs/change_logs/change_logs_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/logs/change_logs/changes_formatter.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/logs/email_logs/email_logs_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/logs/search_logs/search_logs_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/logs/session_logs/session_log_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/logs/session_logs/session_logs_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/mailing_lists/mailing_list_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/mailing_lists/mailing_list_tp.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/mailing_lists/mailing_lists_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/modules/modules_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/modules/modules_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/modules/modules_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/pdf/css_defaults.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/pdf/pdf_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/pdf/pdf_helper.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/pdf/pdf_image.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/pdf/pdf_renderer.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/pdf/pdf_renderer_tcpdf.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/pdf/pdf_styles.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/pdf/pdf_table.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/pdf/pdf_text.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/permissions/permissions_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/permissions/permissions_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/permissions/permissions_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/phrases/phrases_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/phrases/phrases_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/related_searches/related_searches_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/related_searches/related_searches_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/related_searches/related_searches_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/relationship/relationship_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/relationship/relationship_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/relationship/relationship_tp.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/reviews/reviews_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/reviews/reviews_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/reviews/reviews_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/sections/sections_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/sections/site_config_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/sections/site_config_tp.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/selectors/selectors_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/selectors/selectors_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/selectors/selectors_item.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/selectors/selectors_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/skins/skin_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/skins/skins_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/spelling_dictionary/spelling_dictionary_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/statistics/statistics_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/statistics/statistics_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/statistics/statistics_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/stop_words/stop_words_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/structure/structure_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/stylesheets/stylesheets_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/stylesheets/stylesheets_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/stylesheets/stylesheets_item.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/theme_files/theme_file_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/theme_files/theme_files_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/themes/theme_item.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/themes/themes_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/themes/themes_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/themes/themes_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/thesaurus/thesaurus_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/thesaurus/thesaurus_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/thesaurus/thesaurus_tp.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/translator/translator_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/translator/translator_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/translator/translator_tp.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/user_groups/user_groups_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/user_groups/user_groups_dbitem.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/user_groups/user_groups_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/user_profile/user_profile_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/user_profile/user_profile_eh.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/user_profile/user_profile_tp.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/users/users_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/users/users_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/users/users_item.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/users/users_syncronize.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/users/users_tag_processor.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/visits/visits_config.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/visits/visits_event_handler.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/visits/visits_list.php Diff ] File ]
mod - /in-portal/branches/5.0.x/core/units/visits/visits_tag_processor.php Diff ] File ]
Modules :: In-Commerce: 5.0.x r12288
Timestamp: 2009-08-14 23:23:04
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Removing Deprecated files
rm - /in-commerce/branches/5.0.x/in-commerce/units/module_help
Modules :: In-Commerce: 5.0.x r12287
Timestamp: 2009-08-14 13:12:57
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Securing + Removing Deprecated files
rm - /in-commerce/branches/5.0.x/in-commerce/units/action.php
rm - /in-commerce/branches/5.0.x/in-commerce/units/parser.php
In-Portal CMS: 5.0.x r12286
Timestamp: 2009-08-14 13:12:39
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Securing + Removing Deprecated files
rm - /in-portal/branches/5.0.x/core/units/dummy
In-Portal CMS: 5.0.x r12285
Timestamp: 2009-08-14 13:12:27
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Securing + Removing Deprecated files
add - /in-portal/branches/5.0.x/system/backupdata/.htaccess File ]
rm - /in-portal/branches/5.0.x/system/cache/dummy
rm - /in-portal/branches/5.0.x/system/dummy
In-Portal CMS: 5.0.x r12284
Timestamp: 2009-08-13 21:26:59
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Accidentally committed EMPY .htaccess
mod - /in-portal/branches/5.0.x/admin/system_presets/.htaccess Diff ] File ]
In-Portal CMS: 5.0.x r12283
Timestamp: 2009-08-13 21:24:21
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. .htaccess for Site Configs
add - /in-portal/branches/5.0.x/admin/system_presets/.htaccess File ]
In-Portal CMS: 5.0.x r12273
Timestamp: 2009-08-11 13:59:10
Author: Dmitry
Details ] Diff ] 		Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
add - /in-portal/branches/5.0.x/core/install/incs/.htaccess File ]
In-Portal CMS: 5.0.x r12260
Timestamp: 2009-08-10 17:24:21
Author: Dmitry
Details ] Diff ] 		1. Fixes 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Minor changes
mod - /in-portal/branches/5.0.x/system/.htaccess Diff ] File ]
In-Portal CMS: 5.0.x r12259
Timestamp: 2009-08-10 17:24:06
Author: Dmitry
Details ] Diff ] 		1. Fixes 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Added exclusion for Debugger
add - /in-portal/branches/5.0.x/core/kernel/utility/debugger/.htaccess File ]
In-Portal CMS: 5.0.x r12258
Timestamp: 2009-08-09 23:15:26
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Adding .htaccess
mod - /in-portal/branches/5.0.x/tools/.htaccess Diff ] File ]
In-Portal CMS: 5.0.x r12257
Timestamp: 2009-08-09 23:15:17
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Adding .htaccess
add - /in-portal/branches/5.0.x/system/.htaccess File ]
rm - /in-portal/branches/5.0.x/system/.htaccess-sample
mod - /in-portal/branches/5.0.x/system/cache/clean.sh Diff ] File ]
In-Portal CMS: 5.0.x r12256
Timestamp: 2009-08-09 23:14:12
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Adding .htaccess
add - /in-portal/branches/5.0.x/core/install/.htaccess File ]
add - /in-portal/branches/5.0.x/core/kernel/.htaccess File ]
add - /in-portal/branches/5.0.x/core/units/.htaccess File ]
Modules :: In-News: 5.0.x r12255
Timestamp: 2009-08-09 23:12:47
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Adding .htaccess
add - /in-news/branches/5.0.x/in-news/install/.htaccess File ]
add - /in-news/branches/5.0.x/in-news/units/.htaccess File ]
Modules :: In-Link: 5.0.x r12254
Timestamp: 2009-08-09 23:12:02
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Adding .htaccess
add - /in-link/branches/5.0.x/in-link/install/.htaccess File ]
add - /in-link/branches/5.0.x/in-link/units/.htaccess File ]
Modules :: In-Commerce: 5.0.x r12253
Timestamp: 2009-08-09 23:11:48
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Adding .htaccess
add - /in-commerce/branches/5.0.x/in-commerce/install/.htaccess File ]
add - /in-commerce/branches/5.0.x/in-commerce/units/.htaccess File ]
Modules :: In-Bulletin: 5.0.x r12252
Timestamp: 2009-08-09 23:11:16
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Adding .htaccess
add - /in-bulletin/branches/5.0.x/in-bulletin/install/.htaccess File ]
add - /in-bulletin/branches/5.0.x/in-bulletin/units/.htaccess File ]
Modules :: Custom: 1.0.x r12250
Timestamp: 2009-08-09 23:09:59
Author: Dmitry
Details ] Diff ] 		1. Bug 0000159: Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2. Adding .htaccess
add - /custom/branches/1.0.x/custom/install/.htaccess File ]
add - /custom/branches/1.0.x/custom/units/.htaccess File ]

- Issue History
Date Modified Username Field Change
2009-10-03 07:56 administrator Note Added: 0000709
2009-10-03 07:56 administrator Status resolved => closed
2009-10-03 07:29 administrator Type @60@ => bug report
2009-08-18 00:45 Dmitry Changeset attached 5.0.x r12329
2009-08-16 21:19 Dmitry Note Added: 0000327
2009-08-16 21:19 Dmitry Status reviewed and tested => resolved
2009-08-16 21:19 Dmitry Fixed in Version => 5.0.1
2009-08-16 21:19 Dmitry Resolution reopened => fixed
2009-08-16 21:07 Dmitry Description Updated View Revisions
2009-08-16 20:58 Dmitry Note Added: 0000323
2009-08-16 20:54 Dmitry Changeset attached 5.0.x r12305
2009-08-16 20:54 Dmitry Changeset attached 5.0.x r12304
2009-08-16 20:54 Dmitry Changeset attached 5.0.x r12303
2009-08-16 20:53 Dmitry Changeset attached 5.0.x r12302
2009-08-16 20:53 Dmitry Changeset attached 1.0.x r12301
2009-08-16 20:53 Dmitry Changeset attached 5.0.x r12300
2009-08-16 20:51 Dmitry Changeset attached 5.0.x r12299
2009-08-14 23:23 Dmitry Changeset attached 5.0.x r12288
2009-08-14 13:12 Dmitry Changeset attached 5.0.x r12287
2009-08-14 13:12 Dmitry Changeset attached 5.0.x r12286
2009-08-14 13:12 Dmitry Changeset attached 5.0.x r12285
2009-08-13 21:26 Dmitry Changeset attached 5.0.x r12284
2009-08-13 21:24 Dmitry Changeset attached 5.0.x r12283
2009-08-11 13:59 Dmitry Changeset attached 5.0.x r12273
2009-08-10 17:26 Dmitry Status needs work => reviewed and tested
2009-08-10 17:25 Dmitry Status needs feedback => needs work
2009-08-10 17:25 Dmitry Note Added: 0000300
2009-08-10 17:25 Dmitry Status resolved => needs feedback
2009-08-10 17:25 Dmitry Resolution fixed => reopened
2009-08-10 17:24 Dmitry Note Added: 0000299
2009-08-10 17:24 Dmitry Changeset attached 5.0.x r12260
2009-08-10 17:24 Dmitry Note Added: 0000298
2009-08-10 17:24 Dmitry Status reviewed and tested => resolved
2009-08-10 17:24 Dmitry Resolution open => fixed
2009-08-10 17:24 Dmitry Assigned To alex => Dmitry
2009-08-10 17:24 Dmitry Changeset attached 5.0.x r12259
2009-08-10 17:09 Dmitry Note Added: 0000297
2009-08-10 17:08 Dmitry Status needs work => reviewed and tested
2009-08-10 17:08 Dmitry Assigned To Dmitry => alex
2009-08-10 16:18 alex Assigned To alex => Dmitry
2009-08-10 16:17 alex Note Added: 0000296
2009-08-10 16:17 alex Status needs feedback => needs work
2009-08-09 23:15 Dmitry Changeset attached 5.0.x r12258
2009-08-09 23:15 Dmitry Changeset attached 5.0.x r12257
2009-08-09 23:14 Dmitry Changeset attached 5.0.x r12256
2009-08-09 23:12 Dmitry Changeset attached 5.0.x r12255
2009-08-09 23:12 Dmitry Changeset attached 5.0.x r12254
2009-08-09 23:11 Dmitry Changeset attached 5.0.x r12253
2009-08-09 23:11 Dmitry Changeset attached 5.0.x r12252
2009-08-09 23:10 Dmitry Changeset attached 5.0.x r12251
2009-08-09 23:09 Dmitry Changeset attached 1.0.x r12250
2009-08-09 22:33 Dmitry Summary Add checks to prevent execution of files other, then "index.php" and "admin/index.php" => Prevent of Execution of System Files of files other, then "index.php" and "admin/index.php"
2009-08-09 18:13 Dmitry Note Added: 0000294
2009-08-09 18:13 Dmitry Assigned To Dmitry => alex
2009-08-09 18:13 Dmitry Status reviewed and tested => needs feedback
2009-08-09 18:12 Dmitry Note Added: 0000293
2009-08-03 15:13 Dmitry Assigned To => Dmitry
2009-08-03 15:13 Dmitry Status active => reviewed and tested
2009-07-31 14:11 Dmitry Note Added: 0000206
2009-07-31 14:11 Dmitry Priority normal => critical
2009-07-31 14:11 Dmitry Type bug report => @60@
2009-07-31 14:11 Dmitry Target Version => 5.0.1
2009-07-31 02:45 alex New Issue

Main | My View | View Issues | Change Log | Roadmap | Docs | Wiki | Repositories
  

Web Development by Intechnic
In-Portal Open Source CMS
In-Portal Open Source CMS
Copyright © 2000 - 2009 MantisBT Group

Powered by Mantis Bugtracker