Advanced Project Statistics

Generated on 2024-04-21 08:15:52 in 947 seconds by apstats

Lines of code

LanguageBytesFilesLinesBlanksCommentsCode
All files without dependencies    
See detail per file type...
70 535 6523 6281 466 779171 114283 7871 011 878
All files of dependencies only    
See detail per file type...
66 163 5023 2931 051 35680 038161 048810 270
Total136 699 1546 9212 518 135251 152444 8351 822 148

Contributions

Pushes and Commits of Dolibarr/dolibarr Pull Request Size of Dolibarr/dolibarr

Contributors


Thumbs of most active contributors

Dolibarr


Star History of Dolibarr/dolibarr

Project value

COCOMO value
(Basic organic model)
$69 230 338
COCOMO effort
(Basic organic model)
6 060 months people

Last security issues (last 3 months)

Commit IDDateReported on
Yogosha
Reported on
GIT
Reported on
CVE
Title
601ace17…2024-04-19SEC: A user with export permission can export module data without permission on module by jumping to the export step 2 with URL IDOR attack.
082195b2…2024-04-09#yogosha21569Fix #yogosha21569
ebe8f251…2024-04-09#yogosha21561Fix #yogosha21561
fae202a6…2024-04-05Sec Possible html injection by corrupting external ICS links.
87bee3fb…2024-04-04#29231SEC Merge pull request #29231 from hregis/fix_14_security
f2c70d95… 2024-04-04SEC Add a protection against installation of external module bypassing installmodules.lock
16e5d08b… 2024-03-14#yogosha21416FIX #yogosha21416
390f18f5…2024-03-14#yogosha20932FIX #yogosha20932
2d9801ff… 2024-03-06Fix sec more complete list of forbidden function
3f99cce3…2024-02-17#yogosha20850Fix #yogosha20850
43967a83…2024-02-15#28168SEC: #28168 Correct protocol limitations (PHP7.4/Win) (#28172)
6a8be838…2024-02-09#28090CVE-2024-2381714.0 fix CVE 2024 23817 (#28090)
fb69347e…2024-02-09#28089CVE-2024-23817FIX CVE-2024-23817 (#28089)
94cd823a…2024-02-08#yogosha20662Fix #yogosha20662
181670df…2024-02-01#yogosha20028Fix #yogosha20028
d0ada38b…2024-01-30SEC Reduce nb of var without WAF used when using the website module
3eb461db…2024-01-24#27771FIX #27771 Sec: birth date and personal address not visible by default on vcard

You can use this URL for RSS notifications: index-security.rss

Technical debt (PHPStan level 3 -> 9 warnings)

FileLineType
htdocs/core/class/conf.class.php1183Property Conf::$loghandlers (array) does not accept array.
htdocs/core/triggers/interface_80_modStripe_Stripe.class.php232Property Stripe\Card::$metadata (Stripe\StripeObject|null) does not accept array.
htdocs/expedition/class/api_shipments.class.php205Property Expedition::$lines (array) does not accept array.
htdocs/public/bookcal/index.php257Property ActionComm::$socpeopleassigned (array) does not accept array{int}.
htdocs/public/stripe/ipn.php434Property Paiement::$paiementid (int) does not accept string.
htdocs/reception/class/api_receptions.class.php202Property Reception::$lines (array) does not accept array.
htdocs/societe/class/companybankaccount.class.php474Parameter #2 $socid (int) of method CompanyBankAccount::fetch() should be compatible with parameter $ref (string) of method Account::fetch()
htdocs/user/class/user.class.php1200Return type (void) of method User::getrights() should be compatible with return type (int|stdClass|null) of method CommonObject::getRights()
htdocs/variants/class/ProductCombination.class.php707Method ProductCombination::getUniqueAttributesAndValuesByFkProductParent() should return array but returns array.

Technical debt (PHAN 14404 warnings)

FileLineDetail
htdocs/accountancy/admin/productaccount.php541TypeError PhanTypeMismatchArgumentNullableInternal Argument 1 ($value) is $chk_prod of type ?''|?'0'|?0|?0.0|?array{}|?false|?non-empty-array|?string[] but \count() takes \Countable|\ResourceBundle|\SimpleXMLElement|array (expected type to be non-nullable)
htdocs/accountancy/admin/productaccount.php818TypeError PhanTypeMismatchArgumentNullableInternal Argument 2 ($haystack) is $chk_prod of type ?''|?'0'|?0|?0.0|?array{}|?false|?non-empty-array but \in_array() takes array (expected type to be non-nullable)
htdocs/accountancy/admin/productaccount.php832TypeError PhanTypeMismatchArgumentNullableInternal Argument 2 ($haystack) is $chk_prod of type ?''|?'0'|?0|?0.0|?array{}|?false|?non-empty-array but \in_array() takes array (expected type to be non-nullable)
htdocs/accountancy/admin/productaccount.php846TypeError PhanTypeMismatchArgumentNullableInternal Argument 2 ($haystack) is $chk_prod of type ?''|?'0'|?0|?0.0|?array{}|?false|?non-empty-array but \in_array() takes array (expected type to be non-nullable)
htdocs/accountancy/admin/productaccount.php860TypeError PhanTypeMismatchArgumentNullableInternal Argument 2 ($haystack) is $chk_prod of type ?''|?'0'|?0|?0.0|?array{}|?false|?non-empty-array but \in_array() takes array (expected type to be non-nullable)
htdocs/accountancy/admin/productaccount.php874TypeError PhanTypeMismatchArgumentNullableInternal Argument 2 ($haystack) is $chk_prod of type ?''|?'0'|?0|?0.0|?array{}|?false|?non-empty-array but \in_array() takes array (expected type to be non-nullable)
htdocs/accountancy/admin/productaccount.php887TypeError PhanTypeMismatchArgumentNullableInternal Argument 2 ($haystack) is $chk_prod of type ?''|?'0'|?0|?0.0|?array{}|?false|?non-empty-array but \in_array() takes array (expected type to be non-nullable)
htdocs/accountancy/bookkeeping/balance.php322UndefError PhanPossiblyUndeclaredGlobalVariable Global variable $url_param is possibly undeclared
htdocs/accountancy/bookkeeping/balance.php323UndefError PhanPossiblyUndeclaredGlobalVariable Global variable $url_param is possibly undeclared
htdocs/accountancy/bookkeeping/balance.php325UndefError PhanPossiblyUndeclaredGlobalVariable Global variable $url_param is possibly undeclared
htdocs/accountancy/bookkeeping/balance.php326UndefError PhanPossiblyUndeclaredGlobalVariable Global variable $url_param is possibly undeclared
htdocs/accountancy/bookkeeping/card.php55TypeError PhanTypeMismatchArgumentProbablyReal Argument 1 ($rowid) is null of type null but \AccountingAccount::fetch() takes int (no real type) defined at htdocs/accountancy/class/accountingaccount.class.php:183 (the inferred real argument type has nothing in common with the parameter's phpdoc type)
htdocs/accountancy/bookkeeping/card.php59TypeError PhanTypeMismatchArgumentProbablyReal Argument 1 ($rowid) is null of type null but \AccountingJournal::fetch() takes int (no real type) defined at htdocs/accountancy/class/accountingjournal.class.php:117 (the inferred real argument type has nothing in common with the parameter's phpdoc type)
htdocs/accountancy/bookkeeping/card.php129TypeError PhanTypeMismatchArgumentProbablyReal Argument 2 ($ref) is null of type null but \BookKeeping::fetch() takes string (no real type) defined at htdocs/accountancy/class/bookkeeping.class.php:746 (the inferred real argument type has nothing in common with the parameter's phpdoc type)
htdocs/accountancy/bookkeeping/card.php135TypeError PhanPossiblyNullTypeMismatchProperty Assigning $subledger_account of type ?array|?string to property but \BookKeeping->subledger_account is string (null is incompatible)
htdocs/accountancy/bookkeeping/card.php186TypeError PhanPossiblyNullTypeMismatchProperty Assigning $subledger_account of type ?array|?string to property but \BookKeeping->subledger_account is string (null is incompatible)
htdocs/accountancy/bookkeeping/card.php192TypeError PhanTypeMismatchProperty Assigning (string)(GETPOST('doc_date', 'alpha')) of type string to property but \BookKeeping->doc_date is int
htdocs/accountancy/bookkeeping/card.php230TypeError PhanTypeMismatchArgumentProbablyReal Argument 2 ($ref) is null of type null but \BookKeeping::fetch() takes string (no real type) defined at htdocs/accountancy/class/bookkeeping.class.php:746 (the inferred real argument type has nothing in common with the parameter's phpdoc type)
htdocs/accountancy/bookkeeping/card.php516TypeError PhanTypeMismatchArgumentProbablyReal Argument 5 ($select_in) is [] of type array{} but \FormAccounting::select_journal() takes int (no real type) defined at htdocs/core/class/html.formaccounting.class.php:86 (the inferred real argument type has nothing in common with the parameter's phpdoc type)
htdocs/accountancy/bookkeeping/card.php771TypeError PhanTypeMismatchArgumentProbablyReal Argument 1 ($rowid) is null of type null but \AccountingAccount::fetch() takes int (no real type) defined at htdocs/accountancy/class/accountingaccount.class.php:183 (the inferred real argument type has nothing in common with the parameter's phpdoc type)