Skip to content

Commit 0cd293f

Browse files
madhuracjMarc Delisle
authored and
Marc Delisle
committed
bug #4505 [security] XSS in view operations page
Signed-off-by: Marc Delisle <marc@infomarc.info>
1 parent 773c507 commit 0cd293f

File tree

2 files changed

+4
-1
lines changed

2 files changed

+4
-1
lines changed

Diff for: ChangeLog

+3
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,9 @@
11
phpMyAdmin - ChangeLog
22
======================
33

4+
4.2.7.1 (2014-08-17)
5+
- bug #4505 [security] XSS in view operations page
6+
47
4.2.7.0 (2014-07-31)
58
- bug Broken links on home page
69
- bug #4494 Overlap in navigation panel

Diff for: js/functions.js

+1-1
Original file line numberDiff line numberDiff line change
@@ -3585,7 +3585,7 @@ AJAX.registerOnload('functions.js', function () {
35853585
var question = PMA_messages.strDropTableStrongWarning + ' ';
35863586
question += $.sprintf(
35873587
PMA_messages.strDoYouReally,
3588-
'DROP VIEW ' + PMA_commonParams.get('table')
3588+
'DROP VIEW ' + escapeHtml(PMA_commonParams.get('table'))
35893589
);
35903590

35913591
$(this).PMA_confirm(question, $(this).attr('href'), function (url) {

0 commit comments

Comments
 (0)