Revision 8bc944bb
Added by Jim Pingle almost 6 years ago
| src/usr/local/www/status.php | ||
|---|---|---|
| 63 | 63 |
|
| 64 | 64 |
$filtered_tags = array( |
| 65 | 65 |
'accountkey', 'authorizedkeys', 'auth_pass', 'auth_user', 'bcrypt-hash', |
| 66 |
'crypto_password', 'crypto_password2', 'dns_nsupdatensupdate_key', |
|
| 67 |
'encryption_password', 'gold_encryption_password', 'gold_password', |
|
| 68 |
'ipsecpsk', 'ldap_bindpw', 'lighttpd_ls_password', |
|
| 69 |
'lighttpd_ls_password', 'md5-hash', 'md5password', 'md5sigkey', |
|
| 70 |
'md5sigpass', 'nt-hash', 'passphrase', 'password', 'passwordagain', |
|
| 71 |
'pre-shared-key', 'proxypass', 'proxy_passwd', 'proxyuser', |
|
| 72 |
'proxy_user', 'prv', 'radius_secret', 'redis_password', |
|
| 73 |
'redis_passwordagain', 'rocommunity', 'secret', 'shared_key', 'tls', |
|
| 74 |
'varclientpasswordinput', 'varclientsharedsecret', 'varsyncpassword', |
|
| 75 |
'varusersmotpinitsecret', 'varusersmotppin' |
|
| 66 |
'cert_key', 'crypto_password', 'crypto_password2', |
|
| 67 |
'dns_nsupdatensupdate_key', 'encryption_password', |
|
| 68 |
'gold_encryption_password', 'gold_password', 'influx_pass', 'ipsecpsk', |
|
| 69 |
'ldap_bindpw', 'lighttpd_ls_password', 'lighttpd_ls_password', |
|
| 70 |
'md5-hash', 'md5password', 'md5sigkey', 'md5sigpass', 'nt-hash', |
|
| 71 |
'passphrase', 'password', 'passwordagain', 'pre-shared-key', |
|
| 72 |
'proxypass', 'proxy_passwd', 'proxyuser', 'proxy_user', 'prv', |
|
| 73 |
'radius_secret', 'redis_password', 'redis_passwordagain', 'rocommunity', |
|
| 74 |
'secret', 'shared_key', 'tls', 'varclientpasswordinput', |
|
| 75 |
'varclientsharedsecret', 'varsyncpassword', 'varusersmotpinitsecret', |
|
| 76 |
'varusersmotppin' |
|
| 76 | 77 |
); |
| 77 | 78 |
|
| 78 | 79 |
if ($_POST['submit'] == "DOWNLOAD" && file_exists($output_file)) {
|
Also available in: Unified diff
status.php: Sanitize influx_pass and cert_key. Fixes #9727 Fixes #9728