Skip to content

Commit

Permalink
fix: missing authentication check (#133)
Browse files Browse the repository at this point in the history
docs: add security policy
  • Loading branch information
ellite authored Feb 20, 2024
1 parent 087f757 commit b887d3a
Show file tree
Hide file tree
Showing 3 changed files with 41 additions and 1 deletion.
28 changes: 28 additions & 0 deletions SECURITY.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,28 @@
# Security Policy

## Reporting a Vulnerability

If you discover any security vulnerabilities in this project, please report them to the developer by emailing [[email protected]](mailto:[email protected]). I appreciate your help in keeping the project secure.

## Supported Versions

This project is currently supported with security updates for the following versions:

| Version | Supported |
| ------- | ------------------ |
| latest | :white_check_mark: |
| main | :white_check_mark: |
| 1.x.x | :x: |

## Security Measures

I take security seriously and am working on ways to implement security measures to protect the project.

## Reporting a Security Concern

If you have any security concerns or questions regarding the security of this project, please contact the developer at [[email protected]](mailto:[email protected]).

## Responsible Disclosure

I kindly request that you follow responsible disclosure practices and give me reasonable time to address any reported vulnerabilities before making them public.

7 changes: 6 additions & 1 deletion endpoints/payments/payment.php
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,12 @@

$paymentId = $_GET['paymentId'];

$inUse = $db->querySingle('SELECT COUNT(*) as count FROM subscriptions WHERE payment_method_id=' . $paymentId) === 1;
$stmt = $db->prepare('SELECT COUNT(*) as count FROM subscriptions WHERE payment_method_id=:paymentId');
$stmt->bindValue(':paymentId', $paymentId, SQLITE3_INTEGER);
$result = $stmt->execute();
$row = $result->fetchArray();
$inUse = $row['count'] === 1;

if ($inUse) {
die(json_encode([
"success" => false,
Expand Down
7 changes: 7 additions & 0 deletions endpoints/subscriptions/export.php
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,13 @@

session_start();

if (!isset($_SESSION['loggedin']) || $_SESSION['loggedin'] !== true) {
die(json_encode([
"success" => false,
"message" => translate('session_expired', $i18n)
]));
}

require_once '../../includes/getdbkeys.php';

$query = "SELECT * FROM subscriptions";
Expand Down

0 comments on commit b887d3a

Please sign in to comment.