ThaMunsta/itflow
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Strip Out http and https in domains, vendors and passwords

Browse Source
This commit is contained in:
johnnyq
2023-05-22 10:39:50 -04:00
parent 96d39a328f
commit 9449a87a1f
3 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
models/client_logins.php
View File

@@ -1,7 +1,7 @@
<?php <?php
$client_id = intval($_POST['client_id']); $client_id = intval($_POST['client_id']);
$name = sanitizeInput($_POST['name']); $name = sanitizeInput($_POST['name']);
$uri = sanitizeInput($_POST['uri']); $uri = preg_replace("(^https?://)", "", sanitizeInput($_POST['uri']));
$username = encryptLoginEntry($_POST['username']); $username = encryptLoginEntry($_POST['username']);
$password = encryptLoginEntry($_POST['password']); $password = encryptLoginEntry($_POST['password']);
$otp_secret = sanitizeInput($_POST['otp_secret']); $otp_secret = sanitizeInput($_POST['otp_secret']);

2
models/vendor.php
View File

@@ -6,7 +6,7 @@ $contact_name = sanitizeInput($_POST['contact_name']);
$phone = preg_replace("/[^0-9]/", '', $_POST['phone']); $phone = preg_replace("/[^0-9]/", '', $_POST['phone']);
$extension = preg_replace("/[^0-9]/", '', $_POST['extension']); $extension = preg_replace("/[^0-9]/", '', $_POST['extension']);
$email = sanitizeInput($_POST['email']); $email = sanitizeInput($_POST['email']);
$website = sanitizeInput($_POST['website']); $website = preg_replace("(^https?://)", "", sanitizeInput($_POST['website']));
$hours = sanitizeInput($_POST['hours']); $hours = sanitizeInput($_POST['hours']);
$sla = sanitizeInput($_POST['sla']); $sla = sanitizeInput($_POST['sla']);
$code = sanitizeInput($_POST['code']); $code = sanitizeInput($_POST['code']);

4
post.php
View File

@@ -6181,7 +6181,7 @@ if(isset($_POST['add_domain'])){
validateTechRole(); validateTechRole();
$client_id = intval($_POST['client_id']); $client_id = intval($_POST['client_id']);
$name = sanitizeInput($_POST['name']); $name = preg_replace("(^https?://)", "", sanitizeInput($_POST['name']));
$registrar = intval($_POST['registrar']); $registrar = intval($_POST['registrar']);
$webhost = intval($_POST['webhost']); $webhost = intval($_POST['webhost']);
$extended_log_description = ''; $extended_log_description = '';
@@ -6238,7 +6238,7 @@ if(isset($_POST['edit_domain'])){
validateTechRole(); validateTechRole();
$domain_id = intval($_POST['domain_id']); $domain_id = intval($_POST['domain_id']);
$name = sanitizeInput($_POST['name']); $name = preg_replace("(^https?://)", "", sanitizeInput($_POST['name']));
$registrar = intval($_POST['registrar']); $registrar = intval($_POST['registrar']);
$webhost = intval($_POST['webhost']); $webhost = intval($_POST['webhost']);
$expire = sanitizeInput($_POST['expire']); $expire = sanitizeInput($_POST['expire']);