cerebrate-project
/
cerebrate
mirror of https://github.com/cerebrate-project/cerebrate
1
0
Fork 0
Code Issues Releases Wiki Activity
984 Commits
12 Branches
31 Tags
21 MiB
Commit Graph

134 Commits (498efcf6714624d9e67c9e45d254728fd3d2b2c0)

Author SHA1 Message Date
iglocska 495c4ee93c
fix: [security] XSS in the generic action template 
- a previously assumed internal url can have user input appended via the MISP local tool connector
- requires a compromised connected MISP instance where a malicious administrator modifies the UUIDs of cerebrate relevant objects to JS payloads

- as reported by Dawid Czarcnecki of Zigrin Security
 2022-02-20 12:07:06 +01:00
iglocska e60d97c214
fix: [security] genericForm reflected XSS in form descriptions for user controlled descriptions 
- accessible via the MISP local tool setting change
- sanitise the description

- as reported by Dawid Czarnecki from Zigrin Security
 2022-02-03 23:56:23 +01:00
iglocska 8b6fc78695
fix: [generic fields] org field URL missing slash fixed 2022-01-28 00:51:09 +01:00
iglocska 589f932fe9
chg: [form] dropdown default key added 2022-01-27 21:09:32 +01:00
Sami Mokaddem dc8710d89e
fix: [users:view] Correctly reload authkey child panel when performing operations 2022-01-27 10:21:55 +01:00
Sami Mokaddem 6005552e76
fix: [genericElements:tags] List tags when editing an entity 2022-01-25 15:02:04 +01:00
iglocska 12d7607aae
new: [encryption key] view added 
- was missing, despite links to it
 2022-01-17 09:45:45 +01:00
iglocska 2eb2459936
fix: [forms] added missing password form field 2021-11-26 10:52:44 +01:00
iglocska 15d738aa77
fix: [forms] dropdowns overriding values from request 2021-11-26 10:51:58 +01:00
iglocska 92ddd04ba0
fix: [JSON fields] fixed escaping issues 2021-11-17 15:58:52 +01:00
Sami Mokaddem 8686aa87a6
fix: [genericElement:index_table] Better support of nested dropdown if it has been added after page load 2021-10-20 15:41:11 +02:00
Sami Mokaddem 7940920f3d
fix: [genericElement:indexTable] Ignore row selector column 2021-10-20 15:39:37 +02:00
Sami Mokaddem 43dfacfe72
chg: [genericElement:indexTable] Refactored code and added support of compact display 2021-10-20 11:28:39 +02:00
Sami Mokaddem 7941a6530a
new: [genericElement:indexTable] Table actions - WiP 
Table actions allow to perform actions on the table such as hide/show columns, regroup rows by fields and so on
 2021-10-20 09:39:12 +02:00
Sami Mokaddem 39fdb8ec0d
new: [user-settings] Added user settings feature 2021-10-08 10:27:40 +02:00
Sami Mokaddem 015c5bc721
chg: [element:genericForm] Added support of bs5 floating label 2021-10-04 16:16:13 +02:00
mokaddem e65e283c04 chg: [genericElement:table] Changed action link display into buttons instead of links 2021-09-17 18:02:48 +02:00
mokaddem e62056d5ac chg: [bootstrap] Moved more files to support bootstrap v5 2021-09-17 17:51:45 +02:00
mokaddem 0d8841a3bf Merge branch 'ui-navigation' into develop-unstable 2021-09-17 17:12:33 +02:00
mokaddem 0eb14195ee Merge branch 'tags' into develop-unstable 2021-09-17 16:46:54 +02:00
mokaddem 10e4c97d8c Merge branch 'local-tool-batch-actions' into develop-unstable 2021-09-17 16:39:04 +02:00
mokaddem 36f6866bd3 Merge branch 'ui-refacto' into develop-unstable 2021-09-17 16:38:48 +02:00
mokaddem 67b43635d0 chg: [bootstrap] Migrated APP to use bootstrap v5.x 2021-09-17 13:04:37 +02:00
mokaddem 9e7bf8638a chg: [layout] Support of themes - WiP 2021-09-16 15:50:55 +02:00
mokaddem 0c2c402aa2 chg: [layout] Modernized general UI - WiP 2021-09-13 13:04:54 +02:00
mokaddem e16a83eddd chg: [elements:index_actions] UI hover feedback 2021-09-13 13:03:27 +02:00
mokaddem c2e7414318 chg: [layout] Modern application UI - WiP 2021-09-13 11:43:42 +02:00
mokaddem 50c4a31a2e chg: [layout:sidebar] Started integration of sidebar - WiP 2021-09-07 15:51:21 +02:00
mokaddem ea3168b840 new: [genericElements:singleView] Added new string field to extract without type deduction 2021-09-03 09:47:36 +02:00
mokaddem a4535ea42e chg: [tag] Continuation of integrating tagging plugin - WiP 
- Filtering
- CRUD of tags
 2021-08-30 15:11:21 +02:00
mokaddem 29595c6e22 chg: [tag] Continuation of integrating tagging plugin - WiP 
- Can tag/untag any model
 2021-08-26 16:12:55 +02:00
mokaddem 8b659fb6af chg: [tag] Continuation of integrating tagging plugin - WiP 
- Tagging / Untagging
 2021-08-26 12:06:12 +02:00
mokaddem b1e5bbad1a new: [tag] Started integration of tag plugin with custom helpers - WiP 2021-08-24 10:49:53 +02:00
mokaddem aa66b4fbf5 fix: [genericElement:singleView] Improved display of json field 2021-07-07 15:11:52 +02:00
mokaddem 41e9666224 new: [localTool:batchActions] Added framework to execute batch actions on list of connections 2021-07-07 15:05:32 +02:00
mokaddem 493530f52d fix: [genericElement:codemirror] Catch if no data for codemirror are passed 2021-07-07 15:02:48 +02:00
mokaddem 1251d0f168 chg: [genericElement:single_view] Usage of factories 2021-07-06 12:37:16 +02:00
mokaddem 64ca0179bf chg: [genericElement:single_view] Metafields have their own element 2021-07-06 12:35:50 +02:00
mokaddem d9bef3dc0c new: [localTools] Setting validation 2021-07-05 17:27:39 +02:00
mokaddem bc7e2baf83 new: [localtools] Integration of codemirror of tools parameters 2021-07-05 14:14:17 +02:00
mokaddem 9de600db97 chg: [genericElement:index-table] Automatically include selector if 
topbar has multi-select actions
 2021-07-05 09:30:20 +02:00
mokaddem 97dd912da9 chg: [genericForm] Allow empty option in selector 2021-06-30 12:22:22 +02:00
mokaddem 186fba395a fix: [indexTable:group_search] Fixed typo in passed argument 2021-06-30 08:33:09 +02:00
mokaddem 7add89aa9e fix: [singleView:jsonField] Render only first value 2021-06-28 11:48:39 +02:00
mokaddem 18e32730d2 fix: [genericElement:index_table] Added missing multi-select-actions view 2021-06-23 11:18:51 +02:00
mokaddem bb6489778f chg: [genericElement:index_table] Generic support of bulk operations 2021-06-23 11:15:22 +02:00
mokaddem 169ebac9ab Merge remote-tracking branch 'origin/develop' into inbox-misp-sync 2021-06-14 14:11:07 +02:00
iglocska e1ac7fe2e6
chg: [wip] localtools 2021-06-14 08:37:00 +02:00
mokaddem 5e0a4b155e Merge branch 'develop' of github.com:cerebrate-project/cerebrate into inbox-misp-sync 2021-06-12 13:34:13 +02:00
mokaddem d76aa04ad7 chg: [genericElement:form] More flexible variable check 2021-06-12 12:04:57 +02:00