#12798 fixed unauth sql injection in grafana

2025-04-08 18:55:09 +02:00 · 2024-01-31 10:05:36 +01:00 · 2024-01-31 10:05:36 +01:00 · 137488ee8c
commit 137488ee8c
parent f084893889
2 changed files with 6 additions and 0 deletions
--- a/pandora_console/extensions/grafana/query.php
+++ b/pandora_console/extensions/grafana/query.php
@ -23,6 +23,9 @@ if ($headers['Authorization']) {

    list($user, $password) = explode(':', base64_decode($headers['Authorization']));

+    // Prevent sql injection.
+    $user = mysqli_real_escape_string($config['dbconnection'], $user);
+
    // Check user login
    $user_in_db = process_user_login($user, $password, true);

--- a/pandora_console/extensions/grafana/search.php
+++ b/pandora_console/extensions/grafana/search.php
@ -24,6 +24,9 @@ if ($headers['Authorization']) {

    list($user, $password) = explode(':', base64_decode($headers['Authorization']));

+    // Prevent sql injection.
+    $user = mysqli_real_escape_string($config['dbconnection'], $user);
+
    // Check user login
    $user_in_db = process_user_login($user, $password, true);