Skip to content

Commit

Permalink
[security] XSS in a Designer component
Browse files Browse the repository at this point in the history
  • Loading branch information
@lem9
lem9 committed Oct 30, 2008
1 parent 9155163 commit 625e9f2
Show file tree
Hide file tree
Showing 2 changed files with 5 additions and 1 deletion.
3 changes: 3 additions & 0 deletions ChangeLog
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,6 +11,9 @@ $HeadURL: https://phpmyadmin.svn.sourceforge.net/svnroot/phpmyadmin/trunk/phpMyA
- [core] do not automatically set and create TempDir, it might lead to security
issue (thanks to Thijs Kinkhorst)

2.11.9.3 (2008-10-30)
- [security] XSS in a Designer component

2.11.9.2 (2008-09-22)
- [security] XSS in MSIE using NUL byte, thanks to JPCERT.

Expand Down
3 changes: 2 additions & 1 deletion pmd_pdf.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -60,7 +60,8 @@
<body>
<br>
<div style="text-align:center; font-weight:bold;">
<form name="form1" method="post" action="pmd_pdf.php?server=<?php echo $server; ?>&db=<?php echo $db; ?>&token=<?php echo $token; ?>">
<form name="form1" method="post" action="pmd_pdf.php">
<?php echo PMA_generate_common_hidden_inputs($db); ?>
<p><?php echo $strExportImportToScale; ?>:
<select name="scale">
<option value="1">1:1</option>
Expand Down

0 comments on commit 625e9f2

Please sign in to comment.