Skip to content

Commit 1bc04ec

Browse files
committed
bug #4579 [security] XSS vulnerability in zoom search page
Signed-off-by: Madhura Jayaratne <madhura.cj@gmail.com>
1 parent d32da34 commit 1bc04ec

File tree

2 files changed

+2
-1
lines changed

2 files changed

+2
-1
lines changed

Diff for: ChangeLog

+1
Original file line numberDiff line numberDiff line change
@@ -16,6 +16,7 @@ phpMyAdmin - ChangeLog
1616
- bug #4596 [security] XSS through exception stack
1717
- bug #4595 [security] Path traversal can lead to leakage of line count
1818
- bug #4578 [security] XSS vulnerability in table print view
19+
- bug #4579 [security] XSS vulnerability in zoom search page
1920

2021
4.2.11.0 (2014-10-31)
2122
- bug ReferenceError: Table_onover is not defined

Diff for: tbl_zoom_select.php

+1-1
Original file line numberDiff line numberDiff line change
@@ -81,7 +81,7 @@
8181
}
8282
$key = array_search($field, $table_search->getColumnNames());
8383
$properties = $table_search->getColumnProperties($_REQUEST['it'], $key);
84-
$response->addJSON('field_type', $properties['type']);
84+
$response->addJSON('field_type', htmlspecialchars($properties['type']));
8585
$response->addJSON('field_collation', $properties['collation']);
8686
$response->addJSON('field_operators', $properties['func']);
8787
$response->addJSON('field_value', $properties['value']);

0 commit comments

Comments
 (0)