problema con event-list

event-list presenta un problema quando si prova ad inserire event-list come widget alla home, il che rende praticamente inutilizzabie questo plugin per eventi

per riprodurre il problema

Aggiungo il widget event list nella sidebar e premo pubblica

di seguito una screenshot del errore

added plugin label

changed the description

changed the description

usando

"event_list_widget" AND program:apache AND ModSecurity

trovo errore in https://logs.autistici.org/goto/52d3b1ac28de66621b69d0af5b1b2ffb

program:
    apache
message:
    [Tue Mar 01 15:59:06.968352 2022] [:error] [pid 21045:tid 140459791873792] [client 0.0.0.0:25184] [client 0.0.0.0] ModSecurity: Warning. Matched phrase "Get-Event" at ARGS:form_data. [file "/usr/share/modsecurity-crs/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf"] [line "329"] [id "932120"] [msg "Remote Command Execution: Windows PowerShell Command Found"] [data "Matched Data: Get-Event found within ARGS:form_data: widget-id=event_list_widget-4&id_base=event_list_widget&widget-width=250&widget-height=200&widget_number=4&widget-event_list_widget[4][title]=prossimi appuntamenti:&widget-event_list_widget[4][cat_filter]=&widget-event_list_widget[4][num_events]=&widget-event_list_widget[4][title_length]=&widget-event_list_widget[4][show_starttime]=&widget-event_list_widget[4][show_location]=false&widget-event_list_widget[4][location_length]=0&widget-event_list_widget[..."] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-shell"] [tag "language-p
severity:
    ERR
@timestamp:
    Mar 1, 2022 @ 15:59:06.968
host:
    assenza
tag:
    apache:
facility:
    daemon
_id:
    XBU0Rn8BJhDojkjs6V9_
_type:
    _doc
_index:
    logstash-2022.03.01
_score:
    - 
    - 

closed

mentioned in commit noblogs/noblogs-composer@26b788bc