Skip to content
Permalink
Browse files Browse the repository at this point in the history
Fix XSS in zoom search
Signed-off-by: Madhura Jayaratne <madhura.cj@gmail.com>
  • Loading branch information
madhuracj committed Feb 29, 2016
1 parent cc55f44 commit 41c4e02
Showing 1 changed file with 5 additions and 1 deletion.
6 changes: 5 additions & 1 deletion libraries/controllers/TableSearchController.class.php
Expand Up @@ -471,7 +471,11 @@ public function changeTableInfoAction()
return;
}
$key = array_search($field, $this->_columnNames);
$properties = $this->getColumnProperties($_REQUEST['it'], $key);
$search_index = 0;
if (PMA_isValid($_REQUEST['it'], 'integer')) {
$search_index = $_REQUEST['it'];
}
$properties = $this->getColumnProperties($search_index, $key);
$this->response->addJSON(
'field_type', htmlspecialchars($properties['type'])
);
Expand Down

0 comments on commit 41c4e02

Please sign in to comment.