Axia4

EuskadiTech/Axia4

Fork 0

Commit Graph

Author	SHA1	Message	Date
naielv	98f430188c	Enhance security and input sanitization across multiple files - Added a new tools.security.php file containing functions for sanitizing filenames, paths, and user inputs to prevent directory traversal and XSS attacks. - Updated various files to utilize the new sanitization functions (Sf, Si) for user inputs and file operations, ensuring safer handling of data. - Improved HTML output safety by applying htmlspecialchars to user-generated content in pre-body.php, cal.php, and other relevant files. - Refactored user authentication and data retrieval processes in tools.auth.php and _login.php to enhance security and maintainability. - Ensured consistent use of sanitization functions in API endpoints and admin functionalities to mitigate potential security vulnerabilities.	2026-02-18 23:22:58 +01:00
Naiel	1e6f6be18f	Add diario.php for student diary management and update images - Created a new file `diario.php` to manage and display student diaries. - Implemented user permission checks to restrict access to docentes. - Added functionality to list students and their diary entries based on selected aulario. - Included validation for directory paths and error handling for missing data. - Updated images `alumnos.png` and `yo.png` in the static assets.	2026-02-18 11:38:48 +00:00

Author

SHA1

Message

Date

naielv

98f430188c

Enhance security and input sanitization across multiple files

- Added a new tools.security.php file containing functions for sanitizing filenames, paths, and user inputs to prevent directory traversal and XSS attacks.
- Updated various files to utilize the new sanitization functions (Sf, Si) for user inputs and file operations, ensuring safer handling of data.
- Improved HTML output safety by applying htmlspecialchars to user-generated content in pre-body.php, cal.php, and other relevant files.
- Refactored user authentication and data retrieval processes in tools.auth.php and _login.php to enhance security and maintainability.
- Ensured consistent use of sanitization functions in API endpoints and admin functionalities to mitigate potential security vulnerabilities.

2026-02-18 23:22:58 +01:00

Naiel

1e6f6be18f

Add diario.php for student diary management and update images

- Created a new file `diario.php` to manage and display student diaries.
- Implemented user permission checks to restrict access to docentes.
- Added functionality to list students and their diary entries based on selected aulario.
- Included validation for directory paths and error handling for missing data.
- Updated images `alumnos.png` and `yo.png` in the static assets.

2026-02-18 11:38:48 +00:00

2 Commits