Révision 4cc34245
Ajouté par Renato Botelho il y a presque 10 ans
etc/inc/service-utils.inc | ||
---|---|---|
515 | 515 |
services_radvd_configure(); |
516 | 516 |
break; |
517 | 517 |
case 'captiveportal': |
518 |
$zone = $extras['zone'];
|
|
518 |
$zone = htmlspecialchars($extras['zone']);
|
|
519 | 519 |
captiveportal_init_webgui_zonename($zone); |
520 | 520 |
break; |
521 | 521 |
case 'ntpd': |
... | ... | |
550 | 550 |
vpn_ipsec_force_reload(); |
551 | 551 |
break; |
552 | 552 |
case 'openvpn': |
553 |
$vpnmode = isset($extras['vpnmode']) ? $extras['vpnmode'] : $extras['mode'];
|
|
553 |
$vpnmode = isset($extras['vpnmode']) ? htmlspecialchars($extras['vpnmode']) : htmlspecialchars($extras['mode']);
|
|
554 | 554 |
if (($vpnmode == "server") || ($vpnmode == "client")) { |
555 |
$id = isset($extras['vpnid']) ? $extras['vpnid'] : $extras['id'];
|
|
555 |
$id = isset($extras['vpnid']) ? htmlspecialchars($extras['vpnid']) : htmlspecialchars($extras['id']);
|
|
556 | 556 |
$configfile = "{$g['varetc_path']}/openvpn/{$vpnmode}{$id}.conf"; |
557 | 557 |
if (file_exists($configfile)) |
558 | 558 |
openvpn_restart_by_vpnid($vpnmode, $id); |
... | ... | |
574 | 574 |
killbypid("{$g['varrun_path']}/radvd.pid"); |
575 | 575 |
break; |
576 | 576 |
case 'captiveportal': |
577 |
$zone = $extras['zone'];
|
|
577 |
$zone = htmlspecialchars($extras['zone']);
|
|
578 | 578 |
killbypid("{$g['varrun_path']}/lighty-{$zone}-CaptivePortal.pid"); |
579 | 579 |
killbypid("{$g['varrun_path']}/lighty-{$zone}-CaptivePortal-SSL.pid"); |
580 | 580 |
break; |
... | ... | |
618 | 618 |
exec("killall -9 racoon"); |
619 | 619 |
break; |
620 | 620 |
case 'openvpn': |
621 |
$vpnmode = $extras['vpnmode'];
|
|
621 |
$vpnmode = htmlspecialchars($extras['vpnmode']);
|
|
622 | 622 |
if (($vpnmode == "server") or ($vpnmode == "client")) { |
623 |
$id = $extras['id'];
|
|
623 |
$id = htmlspecialchars($extras['id']);
|
|
624 | 624 |
$pidfile = "{$g['varrun_path']}/openvpn_{$vpnmode}{$id}.pid"; |
625 | 625 |
killbypid($pidfile); |
626 | 626 |
} |
... | ... | |
641 | 641 |
services_radvd_configure(); |
642 | 642 |
break; |
643 | 643 |
case 'captiveportal': |
644 |
$zone = $extras['zone'];
|
|
644 |
$zone = htmlspecialchars($extras['zone']);
|
|
645 | 645 |
killbypid("{$g['varrun_path']}/lighty-{$zone}-CaptivePortal.pid"); |
646 | 646 |
killbypid("{$g['varrun_path']}/lighty-{$zone}-CaptivePortal-SSL.pid"); |
647 | 647 |
captiveportal_init_webgui_zonename($zone); |
... | ... | |
679 | 679 |
vpn_ipsec_force_reload(); |
680 | 680 |
break; |
681 | 681 |
case 'openvpn': |
682 |
$vpnmode = $extras['vpnmode'];
|
|
682 |
$vpnmode = htmlspecialchars($extras['vpnmode']);
|
|
683 | 683 |
if ($vpnmode == "server" || $vpnmode == "client") { |
684 |
$id = $extras['id'];
|
|
684 |
$id = htmlspecialchars($extras['id']);
|
|
685 | 685 |
$configfile = "{$g['varetc_path']}/openvpn/{$vpnmode}{$id}.conf"; |
686 | 686 |
if (file_exists($configfile)) |
687 | 687 |
openvpn_restart_by_vpnid($vpnmode, $id); |
Formats disponibles : Unified diff
Add some protection to parameters that come through _GET