59692b7c05
Readme rework
2026-01-12 13:07:40 +02:00
5e7755d946
Move licence and readme to the root of the repo
2026-01-12 12:44:50 +02:00
e4ae5d5ce6
Add readme and Licence file for completion.
2026-01-12 12:43:07 +02:00
9a971a17ad
Add a first draft report version.
2026-01-12 12:09:45 +02:00
296bda7f76
Add test_encrypt and test_hash php files to the app just for completion.
2026-01-12 12:08:49 +02:00
f395e5ac6f
Switch to https using Caddy proxy.
2026-01-12 12:06:43 +02:00
3f7a2d2d61
Web app switched to non-root SQL account.
2026-01-12 12:02:58 +02:00
fb80cb78eb
Fix plain text in user authendication -- part 2.
2026-01-11 21:06:49 +02:00
c06e1bd64b
Fix plain text in user authendication.
2026-01-11 18:38:08 +02:00
57cc2c3fa0
Apply contex-aware encoding to the rest of the program.
2026-01-11 17:53:04 +02:00
4b5d0dd704
Fix XSS by applying context-aware encoding
2026-01-11 16:50:47 +02:00
244b91677f
Prepare XSS environment and XSS attack proof
2026-01-11 16:50:47 +02:00
bd9aec48d7
Fix SQL injection in the rest of the passman
2026-01-11 16:48:48 +02:00
f94a1ebbd5
Fix SQL injection in login using prepared statements part 2
2026-01-10 22:44:55 +02:00
75f47a76b0
Fix SQL injection in login using prepared statements
2026-01-10 22:31:10 +02:00
6a2ca8f2a4
Prepare report files
2026-01-10 22:03:55 +02:00
b814885a96
Dockerize passman for modern environments
...
Ported the original passman PHP/MySQL application to a Docker-based setup using Apache and MariaDB.
Fixed compatibility issues with modern PHP/MariaDB versions (HTTP header handling and database collation) using minimal, targeted changes.
Preserved the original application logic and structure while ensuring correct execution in a contemporary containerized environment.
2026-01-10 19:20:00 +02:00
61c777f33a
Init commit with passman (and XSS) files aranged as a deployed environment
2026-01-10 17:56:35 +02:00
