Permalink
Browse files

Fix XSS on delimiter in db_sql.php.

  • Loading branch information...
1 parent 6d548f7 commit 5bcd95a42c8ba924d389eafee4d7be80bd4039a3 @lem9 lem9 committed with nijel Aug 17, 2010
Showing with 1 addition and 1 deletion.
  1. +1 −1 db_sql.php
View
@@ -37,7 +37,7 @@
/**
* Query box, bookmark, insert data from textfile
*/
-PMA_sqlQueryForm(true, false, isset($_REQUEST['delimiter']) ? $_REQUEST['delimiter'] : ';');
+PMA_sqlQueryForm(true, false, isset($_REQUEST['delimiter']) ? htmlspecialchars($_REQUEST['delimiter']) : ';');
/**
* Displays the footer

0 comments on commit 5bcd95a

Please sign in to comment.