hnhx-archive/librex
1
0
Fork 0
mirror of https://github.com/hnhx/librex.git synced 2025-04-29 14:09:27 -04:00
Code Issues Projects Releases Packages Wiki Activity

fixed arbitrary file read and XSS vulnerabilities, fixed some issues with settings

Browse source
This commit is contained in:
hnhx 2022-05-15 10:34:46 +02:00
parent e9652789f5
commit 61240bcd79
14 changed files with 70 additions and 59 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
config.php.example Executable file → Normal file
View file

@ -39,9 +39,13 @@
// CURLOPT_PROXYTYPE => CURLPROXY_HTTP, // CURLOPT_PROXYTYPE => CURLPROXY_HTTP,
CURLOPT_RETURNTRANSFER => true, CURLOPT_RETURNTRANSFER => true,
CURLOPT_ENCODING => "", CURLOPT_ENCODING => "",
CURLOPT_USERAGENT => "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.64 Safari/537.36", CURLOPT_USERAGENT => "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.67 Safari/537.36",
CURLOPT_IPRESOLVE => CURL_IPRESOLVE_V4, CURLOPT_IPRESOLVE => CURL_IPRESOLVE_V4,
CURLOPT_CUSTOMREQUEST => "GET", CURLOPT_CUSTOMREQUEST => "GET",
CURLOPT_PROTOCOLS => CURLPROTO_HTTPS | CURLPROTO_HTTP,
CURLOPT_REDIR_PROTOCOLS => CURLPROTO_HTTPS | CURLPROTO_HTTP,
CURLOPT_MAXREDIRS => 5,
CURLOPT_TIMEOUT => 8,
CURLOPT_VERBOSE => false CURLOPT_VERBOSE => false
) )

8
engines/bittorrent/nyaa.php
View file

@ -20,11 +20,11 @@
array_push($results, array_push($results,
array ( array (
"name" => $name, "name" => htmlspecialchars($name),
"seeders" => (int) $seeders, "seeders" => (int) $seeders,
"leechers" => (int) $leechers, "leechers" => (int) $leechers,
"magnet" => $magnet, "magnet" => htmlspecialchars($magnet),
"size" => $size, "size" => htmlspecialchars($size),
"source" => "nyaa.si" "source" => "nyaa.si"
) )
); );
@ -32,4 +32,4 @@
return $results; return $results;
} }
?> ?>

8
engines/bittorrent/rutor.php
View file

@ -21,11 +21,11 @@
array_push($results, array_push($results,
array ( array (
"name" => $name, "name" => htmlspecialchars($name),
"seeders" => (int) remove_special($seeders), "seeders" => (int) remove_special($seeders),
"leechers" => (int) remove_special($leechers), "leechers" => (int) remove_special($leechers),
"magnet" => $magnet, "magnet" => htmlspecialchars($magnet),
"size" => $size, "size" => htmlspecialchars($size),
"source" => "rutor.info" "source" => "rutor.info"
) )
); );
@ -33,4 +33,4 @@
return $results; return $results;
} }
?> ?>

12
engines/bittorrent/thepiratebay.php
View file

@ -24,11 +24,11 @@
array_push($results, array_push($results,
array ( array (
"size" => $size, "size" => htmlspecialchars($size),
"name" => $name, "name" => htmlspecialchars($name),
"seeders" => $seeders, "seeders" => htmlspecialchars($seeders),
"leechers" => $leechers, "leechers" => htmlspecialchars($leechers),
"magnet" => $magnet, "magnet" => htmlspecialchars($magnet),
"source" => "thepiratebay.org" "source" => "thepiratebay.org"
) )
); );
@ -37,4 +37,4 @@
return $results; return $results;
} }
?> ?>

6
engines/bittorrent/torrentgalaxy.php
View file

@ -19,11 +19,11 @@
array_push($results, array_push($results,
array ( array (
"name" => $name, "name" => htmlspecialchars($name),
"seeders" => (int) $seeders, "seeders" => (int) $seeders,
"leechers" => (int) $leechers, "leechers" => (int) $leechers,
"magnet" => $magnet, "magnet" => htmlspecialchars($magnet),
"size" => $size, "size" => htmlspecialchars($size),
"source" => "torrentgalaxy.to" "source" => "torrentgalaxy.to"
) )
); );

12
engines/bittorrent/yts.php
View file

@ -26,11 +26,11 @@
array_push($results, array_push($results,
array ( array (
"size" => $size, "size" => htmlspecialchars($size),
"name" => $name, "name" => htmlspecialchars($name),
"seeders" => $seeders, "seeders" => htmlspecialchars($seeders),
"leechers" => $leechers, "leechers" => htmlspecialchars($leechers),
"magnet" => $magnet, "magnet" => htmlspecialchars($magnet),
"source" => "yts.mx" "source" => "yts.mx"
) )
); );
@ -42,4 +42,4 @@
return $results; return $results;
} }
?> ?>

2
engines/google/image.php
View file

@ -61,4 +61,4 @@
echo "</div>"; echo "</div>";
} }
?> ?>

4
engines/special/currency.php
View file

@ -22,10 +22,10 @@
$source = "https://moneyconvert.net/"; $source = "https://moneyconvert.net/";
return array( return array(
"special_response" => array( "special_response" => array(
"response" => $formatted_response, "response" => htmlspecialchars($formatted_response),
"source" => $source "source" => $source
) )
); );
} }
} }
?> ?>

4
engines/special/definition.php
View file

@ -14,11 +14,11 @@
$source = "https://dictionaryapi.dev"; $source = "https://dictionaryapi.dev";
return array( return array(
"special_response" => array( "special_response" => array(
"response" => $definition, "response" => htmlspecialchars($definition),
"source" => $source "source" => $source
) )
); );
} }
} }
?> ?>

4
engines/special/wikipedia.php
View file

@ -14,7 +14,7 @@
$source = check_for_privacy_frontend("https://wikipedia.org/wiki/$query"); $source = check_for_privacy_frontend("https://wikipedia.org/wiki/$query");
$response = array( $response = array(
"special_response" => array( "special_response" => array(
"response" => $description, "response" => htmlspecialchars($description),
"source" => $source "source" => $source
) )
); );
@ -30,4 +30,4 @@
return $response; return $response;
} }
} }
?> ?>

2
index.php
View file

@ -15,4 +15,4 @@
</div> </div>
</form> </form>
<?php require "misc/footer.php"; ?> <?php require "misc/footer.php"; ?>

2
misc/header.php
View file

@ -11,7 +11,7 @@
<link rel="stylesheet" type="text/css" href="<?php <link rel="stylesheet" type="text/css" href="<?php
echo "static/css/"; echo "static/css/";
if (isset($_COOKIE["theme"]) || isset($_REQUEST["theme"])) if (isset($_COOKIE["theme"]) || isset($_REQUEST["theme"]))
echo (isset($_COOKIE["theme"]) ? $_COOKIE["theme"] : $_REQUEST["theme"]) . ".css"; echo htmlspecialchars((isset($_COOKIE["theme"]) ? $_COOKIE["theme"] : $_REQUEST["theme"]) . ".css");
else else
echo "dark.css"; echo "dark.css";
?>"/> ?>"/>

4
search.php
View file

@ -7,7 +7,7 @@
<a href="./"><img class="logo" src="static/images/librex.png" alt="librex logo"></a> <a href="./"><img class="logo" src="static/images/librex.png" alt="librex logo"></a>
<input type="text" name="q" <input type="text" name="q"
<?php <?php
$query = trim($_REQUEST["q"]); $query = htmlspecialchars(trim($_REQUEST["q"]));
$query_encoded = urlencode($query); $query_encoded = urlencode($query);
if (1 > strlen($query) || strlen($query) > 256) if (1 > strlen($query) || strlen($query) > 256)
@ -107,4 +107,4 @@
} }
?> ?>
<?php require "misc/footer.php"; ?> <?php require "misc/footer.php"; ?>

55
settings.php
View file

@ -1,20 +1,36 @@
<?php <?php
require "misc/header.php";
$config = require "config.php"; $config = require "config.php";
if (isset($_REQUEST["save"]) || isset($_REQUEST["reset"]))
{
if (isset($_SERVER["HTTP_COOKIE"]))
{
$cookies = explode(";", $_SERVER["HTTP_COOKIE"]);
foreach($cookies as $cookie)
{
$parts = explode("=", $cookie);
$name = trim($parts[0]);
setcookie($name, "", time() - 1000);
}
}
}
function better_setcookie($name) function better_setcookie($name)
{ {
if (!empty($_REQUEST[$name])) if (!empty($_REQUEST[$name]))
setcookie($name, $_REQUEST[$name], time() + (86400 * 90)); {
else if (isset($_COOKIE[$name])) setcookie($name, $_REQUEST[$name], time() + (86400 * 90), '/');
setcookie($name, "", time() - 1000); $_COOKIE[$name] = $_REQUEST[$name];
}
} }
if (isset($_REQUEST["save"])) if (isset($_REQUEST["save"]))
{ {
better_setcookie("theme"); better_setcookie("theme");
better_setcookie("disable_special"); better_setcookie("disable_special");
better_setcookie("invidious"); better_setcookie("invidious");
@ -23,25 +39,16 @@
better_setcookie("libreddit"); better_setcookie("libreddit");
better_setcookie("proxitok"); better_setcookie("proxitok");
better_setcookie("wikiless"); better_setcookie("wikiless");
}
if (isset($_REQUEST["save"]) || isset($_REQUEST["reset"]))
{
header("Location: ./settings.php"); header("Location: ./settings.php");
die(); die();
} }
else if (isset($_REQUEST["reset"]))
{ require "misc/header.php";
if (isset($_SERVER["HTTP_COOKIE"])) { ?>
$cookies = explode(";", $_SERVER["HTTP_COOKIE"]);
foreach($cookies as $cookie) {
$parts = explode("=", $cookie);
$name = trim($parts[0]);
setcookie($name, "", time() - 1000);
}
header("Location: ./settings.php");
die();
}
}
?>
<title>LibreX - Settings</title> <title>LibreX - Settings</title>
</head> </head>