tyler.durden
/
pandorafms
mirror of https://github.com/pandorafms/pandorafms.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

2007-10-09 Sancho Lerena <slerena@gmail.com> 

* operation/reporting/reporting_viewer.php: Fixed small bug mixing min/max values of SLA render.

        * godmode/reporting/reporting_builder.php: Fixed small bug deleting item from report, that
        return user to another report.



git-svn-id: https://svn.code.sf.net/p/pandora/code/trunk@671 c3f86ba8-e40f-0410-aaad-9ba5e7f4b01f
This commit is contained in:
slerena 2007-10-09 14:18:03 +00:00
parent 5affad5cdc
commit f67340e972
3 changed files with 11 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
pandora_console/ChangeLog
View File

@ -1,4 +1,11 @@
2007-10-03 Sancho Lerena <slerena@gmail.com>
2007-10-09 Sancho Lerena <slerena@gmail.com>
* operation/reporting/reporting_viewer.php: Fixed small bug mixing min/max values of SLA render.
* godmode/reporting/reporting_builder.php: Fixed small bug deleting item from report, that
return user to another report.
2007-10-08 Sancho Lerena <slerena@gmail.com>
* Security fix has been included in ver_agente.php, using a new function to validate
GET variables (checking for numeric data). This security isse was a SQL Blind URL Attack. This

4
pandora_console/godmode/reporting/reporting_builder.php
View File

@ -388,7 +388,7 @@ if ($createmode==2 OR isset($_GET["id"]) OR (isset($_POST["id_report"]))) {
echo "<td class='$tdcolor'>".$period."</td>";
echo "<td class='$tdcolor' align='center'>";
if ($form_id_user == $id_user){
echo "<a href='index.php?sec=greporting&sec2=godmode/reporting/reporting_builder&id=1&delete=$id_rc'><img src='images/cross.png'></a>";
echo "<a href='index.php?sec=greporting&sec2=godmode/reporting/reporting_builder&id=$id_report&delete=$id_rc'><img src='images/cross.png'></a>";
}
echo "</td></tr>";
}
@ -447,4 +447,4 @@ if ($createmode==2 OR isset($_GET["id"]) OR (isset($_POST["id_report"]))) {
echo "</form>";
echo "</table>";
}
?>
?>

3
pandora_console/operation/reporting/reporting_viewer.php
View File

@ -48,7 +48,6 @@ $report_description = give_db_value ("description", "treport", "id_report", $id_
$report_private= give_db_value ("private", "treport", "id_report", $id_report);
$report_user = give_db_value ("id_user", "treport", "id_report", $id_report);
if (($report_user == $id_user) OR (dame_admin($id_user)==1) OR ($report_private == 0)) {
//echo "SLA for Tato: %".return_module_SLA (50, 604800, 1, 1);
echo "<h2>".$lang_label["reporting"]." &gt; ";
echo $lang_label["custom_reporting"]." - ";
@ -76,7 +75,7 @@ if (($report_user == $id_user) OR (dame_admin($id_user)==1) OR ($report_private
case 2: // SLA
$module_name = give_db_value ("nombre", "tagente_modulo", "id_agente_modulo", $id_agent_module);
$agent_name = dame_nombre_agente_agentemodulo ($id_agent_module);
$sla_result = format_numeric(return_module_SLA ($id_agent_module, $period, $sla_max, $sla_min), 2);
$sla_result = format_numeric(return_module_SLA ($id_agent_module, $period, $sla_min, $sla_max), 2);
echo "<tr><td class='datos3'>";
echo "<h4>".$lang_label["SLA"]."</h4>";