mirror/opensourcepos
1
0
Fork 0
mirror of https://github.com/opensourcepos/opensourcepos.git synced 2026-03-09 18:53:01 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
977fa5647b68ac290d44c6a289d7ade68e2ceaf0
opensourcepos/app/Models
History
Ollama 52b0a83190 Fix SQL injection in custom attribute search 
Parameterize LIKE queries in HAVING clause to prevent SQL injection
when search_custom filter is enabled. Also sanitize search parameter
input at controller level for defense-in-depth.

Fixes vulnerability where user input was directly interpolated into
SQL queries without sanitization.
2026-03-07 19:10:42 +01:00
..
Enums
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Reports
Fix second-order SQL injection in currency_symbol config (#4390)
2026-03-06 17:01:38 +01:00
Tokens
Allow anonymous giftcard creation (#4278)
2025-11-24 22:54:52 +01:00
.gitkeep
Corrected link in README.md
2024-06-15 17:19:15 +02:00
Appconfig.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Attribute.php
Fix creation of date attribute value (#4310) (#4344)
2025-12-02 07:19:14 +01:00
Cashup.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Customer_rewards.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Customer.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Dinner_table.php
Fix for suspended sales (#4283) (#4303)
2025-08-15 23:12:35 +02:00
Employee.php
Refactor: Move ADMIN_MODULES to constants, rename methods to camelCase
2026-03-06 17:25:25 +01:00
Expense_category.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Expense.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Giftcard.php
Allow anonymous giftcard creation (#4278)
2025-11-24 22:54:52 +01:00
index.html
Replace tabs with spaces (#4196)
2025-03-28 21:24:21 +04:00
Inventory.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Item_kit_items.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Item_kit.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Item_quantity.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Item_taxes.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Item.php
Fix SQL injection in custom attribute search
2026-03-07 19:10:42 +01:00
Module.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Person.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Receiving.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Rewards.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Sale.php
Fix creation of date attribute value (#4310) (#4344)
2025-12-02 07:19:14 +01:00
Stock_location.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Supplier.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Tax_category.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Tax_code.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Tax_jurisdiction.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00
Tax.php
Improve code style and PSR-12 compliance (#4204)
2025-05-02 19:37:06 +02:00