Domovská stránka Prehľadávať Pomoc
Registrovať Prihlásiť sa
SKZH
/
ITSSTOOLS
3
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Strom: 16d8e423c6
Branche Tagy
ITSSTOOLS
/
core
romainq 65aaea630b XSS: Fixed a regression caused by the fix [3994]. Object hyperlinks were escaped twice causing accuented characters displayed as '´'. The API DBObject::MakeHyperLink has been clarified and the original fix moved elsewhere. The XSS injection that was not handled correctly prior to [3994] was in the display of an external key in the details of an object. To reproduce easily, inject some malicious characters in the name of the organization 'Demo' and view any object owned by Demo. 9 rokov pred
..
oql 43d294e036 Internal: query arguments could be array values, making it easier to build dynamic IN() clauses 9 rokov pred
MyHelpers.class.inc.php 8e56326322 Improved the KPI logging: setting log_kpi_duration to 2 will enable blaming of the FIRST caller (callstack entirely shown in the produced report) 11 rokov pred
action.class.inc.php ccf403a397 (HTML) Formatted Case Logs, Description and Notifications with inline images uploaded as Attachments. Beta Version !! 9 rokov pred
archive.class.inc.php eafa11ecfe Updated copyright (2012) and license (LGPL changed to AGPL) 12 rokov pred
asynctask.class.inc.php 08e01b9eb7 Enhancement: Date and time formats are now configurable in iTop !! (beta version, beware!) 9 rokov pred
attributedef.class.inc.php 472d95489f Security: do not show actual encrypted values, display '*****' instead. 9 rokov pred
autoload.php 4ab7616cf5 YOU MUST RUN THE SETUP AFTER PERFORMING THIS UPDATE !! 9 rokov pred
backgroundprocess.inc.php 5394d05e53 New capability for CRON: handle tasks scheduled at given date/time (as opposed to a task being executed more or less continuously). 12 rokov pred
backgroundtask.class.inc.php 9faf2e7cc9 Enhancement: take into account the "periodicity" of the background processes. 12 rokov pred
bulkchange.class.inc.php f4382de1bf Validate date/time fields using their regular expression during an import (or synchro) to avoid passing wrong formats as-is (e.g. 01/02/16 can become 01/02/0016 instead of 01/02/2016 if you use the 4 digits format for years and pass only 2 digits !) 9 rokov pred
bulkexport.class.inc.php 08e01b9eb7 Enhancement: Date and time formats are now configurable in iTop !! (beta version, beware!) 9 rokov pred
cmdbchange.class.inc.php a432a135ec #854...ROLLBACK, undoing the commit [3185]. The implementation has been postponed to the next major relase. 11 rokov pred
cmdbchangeop.class.inc.php 99816a3830 #1215: URL fields can now store up to 2048 characters 9 rokov pred
cmdbobject.class.inc.php 99816a3830 #1215: URL fields can now store up to 2048 characters 9 rokov pred
cmdbsource.class.inc.php c1e6ec5aae Internal: buggy Exception handlers for some query APIs in CMDBSource 9 rokov pred
computing.inc.php 76e9c27d4a Instrumented the code to ease the troubleshooting of the computing of working hours 10 rokov pred
config.class.inc.php 8fd6012a13 #185 Navigation Breadcrumb - Beta version 9 rokov pred
coreexception.class.inc.php eafa11ecfe Updated copyright (2012) and license (LGPL changed to AGPL) 12 rokov pred
csvbulkexport.class.inc.php 077abf4085 Date and time format finalization for the exports: 9 rokov pred
csvparser.class.inc.php eafa11ecfe Updated copyright (2012) and license (LGPL changed to AGPL) 12 rokov pred
customfieldshandler.class.inc.php 4c09215712 CustomFields: overload AttributeDefinition::Fingerprint 9 rokov pred
data.generator.class.inc.php d10ff67731 Code cleanup: deprecated the unused (and empty) class CMDBSearchFilter, replaced by DBSearch or DBObjectSearch depending on the usage. 10 rokov pred
datamodel.core.xml 7ef64ebeb9 Modularization of the portal. The entry points for portals is now defined in XML, and thus can be altered by an extension. 10 rokov pred
datetimeformat.class.inc.php 077abf4085 Date and time format finalization for the exports: 9 rokov pred
dbobject.class.php 65aaea630b XSS: Fixed a regression caused by the fix [3994]. Object hyperlinks were escaped twice causing accuented characters displayed as '´'. The API DBObject::MakeHyperLink has been clarified and the original fix moved elsewhere. The XSS injection that was not handled correctly prior to [3994] was in the display of an external key in the details of an object. To reproduce easily, inject some malicious characters in the name of the organization 'Demo' and view any object owned by Demo. 9 rokov pred
dbobjectsearch.class.php ccef399cfa Support of date and time custom formats... continuing towards the beta ! 9 rokov pred
dbobjectset.class.php dbe7f19899 Fixed regression introduced with [3912] and partially fixed in [3954] : when the autocomplete is active, then the search dialog was not working anymore. 9 rokov pred
dbproperty.class.inc.php a432a135ec #854...ROLLBACK, undoing the commit [3185]. The implementation has been postponed to the next major relase. 11 rokov pred
dbsearch.class.php 0064a82cd2 Fixed regression introduced with [3912] : autocomplete not working (new User request with lots of existing user requests) 9 rokov pred
dbunionsearch.class.php 682a9c7b5d DBSearch : Allow join between DBUnionSearch by adding the DBUnionSearch::Join verb 9 rokov pred
deletionplan.class.inc.php 652a61e5c1 #1151 Error (with no explanation) when deleting some 1-N links 9 rokov pred
designdocument.class.inc.php b7d37f53b8 Fixed a regression due to the DesignDocument factorisation : 9 rokov pred
dict.class.inc.php e10962be6f Fix for a crash in the setup (regression) introduced by [r3978] (optimization of the load of dictionaries) 9 rokov pred
displayablegraph.class.inc.php ece2876b89 Modified the "List" tab of the Impact Analysis to display only the actually impacted objects. The content of this tab is now refreshed every time the graph is rebuilt to take into account the "context" changes which causes the actual impact to change, or the filtering. 9 rokov pred
email.class.inc.php 991cd359fc Inline images in formatted case log & descriptions: beta version fixperms js The inline images are now no longer stored stored as Attachments but using a specific object InlineImage... 9 rokov pred
event.class.inc.php 895fcba8bc Log REST/JSON calls (config: 'log_rest_service' => true ; stored as EventRestService) 9 rokov pred
excelbulkexport.class.inc.php 077abf4085 Date and time format finalization for the exports: 9 rokov pred
expression.class.inc.php f4cd8ae02d Fixed regressions due to the recent code refactoring [3803] 9 rokov pred
filterdef.class.inc.php eafa11ecfe Updated copyright (2012) and license (LGPL changed to AGPL) 12 rokov pred
htmlbulkexport.class.inc.php 077abf4085 Date and time format finalization for the exports: 9 rokov pred
htmlsanitizer.class.inc.php 5da64f60e2 HTML texts: support of float (left/right) in the inline style tags. 9 rokov pred
inlineimage.class.inc.php 57d4dd36c5 CKEditor's full screen mode is not supported on iOS (cf https://dev.ckeditor.com/ticket/8307) 9 rokov pred
kpi.class.inc.php 8e56326322 Improved the KPI logging: setting log_kpi_duration to 2 will enable blaming of the FIRST caller (callstack entirely shown in the produced report) 11 rokov pred
log.class.inc.php 0c62212a4f File-based "transactions" dans log files better protected against concurrent access... 10 rokov pred
metamodel.class.php 43d294e036 Internal: query arguments could be array values, making it easier to build dynamic IN() clauses 9 rokov pred
metamodelmodifier.inc.php eafa11ecfe Updated copyright (2012) and license (LGPL changed to AGPL) 12 rokov pred
modelreflection.class.inc.php 46fe2f3221 Do not rely on MetaModel::GetRootClass() to check the data model, use the abstraction of ModelReflection instead to keep the code portable. 9 rokov pred
moduledesign.class.inc.php 00eca0fb97 Code refactoring: eliminated duplicate code between MFDocument and ModuleDesign 9 rokov pred
modulehandler.class.inc.php eafa11ecfe Updated copyright (2012) and license (LGPL changed to AGPL) 12 rokov pred
mutex.class.inc.php 1b110522ca #1150: Spurious message "A restore is running..." - FIXED ! 9 rokov pred
ormcaselog.class.inc.php 16ff8fdf23 Suppress a warning when exporting a case log to HTML... Limitation: be aware that wiki links are not transformed to hyperlinks in this case. 9 rokov pred
ormcustomfieldsvalue.class.inc.php 8174660c0d Custom fields: track the changes and improve the robustness with regards to the Exception thrown by the handler. Also fixed an issue with DBObject, causing the custom fields to be written several times if invoking DBUpdate more than once. Theoretically, this issue affects any type of attribute. 9 rokov pred
ormdocument.class.inc.php 8e8da2a09c Fix for potential XSS vulnerability on uploaded file names. To be further tested before retrofitting in branches. 9 rokov pred
ormpassword.class.inc.php eafa11ecfe Updated copyright (2012) and license (LGPL changed to AGPL) 12 rokov pred
ormstopwatch.class.inc.php 08e01b9eb7 Enhancement: Date and time formats are now configurable in iTop !! (beta version, beware!) 9 rokov pred
ownershiplock.class.inc.php 08e01b9eb7 Enhancement: Date and time formats are now configurable in iTop !! (beta version, beware!) 9 rokov pred
pdfbulkexport.class.inc.php 077abf4085 Date and time format finalization for the exports: 9 rokov pred
querybuildercontext.class.inc.php 5ed735e8d0 #942 OQL now supporting unions. Unions support polymorphism and can be used anywhere in the application. 10 rokov pred
querymodifier.class.inc.php eafa11ecfe Updated copyright (2012) and license (LGPL changed to AGPL) 12 rokov pred
relationgraph.class.inc.php 6267c9f8d7 Optimization: do not load all columns when checking if a CI is part of the "context" of a given ticket. 9 rokov pred
restservices.class.inc.php a78e3fdf22 REST/JSON services. Take the user rights into account. Something was already done for core/create and core/delete, but the symptoms were not clear. The other verbs (update, apply_stimulus, get and get_related) had no protection at all. 9 rokov pred
simplecrypt.class.inc.php a4dea4e6cf Prevent a server crash when using together APC cache and Mcrypt 12 rokov pred
simplegraph.class.inc.php 80fd860680 #1159 Cannot add edge (impact analysis not working) 9 rokov pred
spreadsheetbulkexport.class.inc.php 077abf4085 Date and time format finalization for the exports: 9 rokov pred
sqlobjectquery.class.inc.php 5ed735e8d0 #942 OQL now supporting unions. Unions support polymorphism and can be used anywhere in the application. 10 rokov pred
sqlquery.class.inc.php 5ed735e8d0 #942 OQL now supporting unions. Unions support polymorphism and can be used anywhere in the application. 10 rokov pred
sqlunionquery.class.inc.php 5ed735e8d0 #942 OQL now supporting unions. Unions support polymorphism and can be used anywhere in the application. 10 rokov pred
stimulus.class.inc.php eafa11ecfe Updated copyright (2012) and license (LGPL changed to AGPL) 12 rokov pred
tabularbulkexport.class.inc.php d9653c3e57 Preserve the initial sort order on lists by determining the default sort order of the tables based on the equivalence between the "friendlyname" and another actual field of the class. 9 rokov pred
templatestring.class.inc.php eafa11ecfe Updated copyright (2012) and license (LGPL changed to AGPL) 12 rokov pred
trigger.class.inc.php f9c0f98567 Add the "filter" attribute into the details form of the TriggerOnThresholdReached class. 9 rokov pred
userrights.class.inc.php 6b92c94183 Use one-way encryption for storing the token used for the "Forgotten password" feature. 9 rokov pred
valuesetdef.class.inc.php 5ed735e8d0 #942 OQL now supporting unions. Unions support polymorphism and can be used anywhere in the application. 10 rokov pred
xmlbulkexport.class.inc.php b2618d03ae Exports further improved: 9 rokov pred