Skip to content
Browse files

escape query in error message

  • Loading branch information...
1 parent 2189c87 commit 9b3551601ce714adb5e3f428476052f0ec6093bf @ruleant ruleant committed
Showing with 2 additions and 1 deletion.
  1. +2 −1 view_create.php
View
3 view_create.php
@@ -114,7 +114,8 @@
$response->addJSON(
'message',
PMA_Message::error(
- "<i>$sql_query</i><br /><br />" . PMA_DBI_getError()
+ "<i>" . htmlspecialchars($sql_query) . "</i><br /><br />"
+ . PMA_DBI_getError()
)
);
$response->isSuccess(false);

0 comments on commit 9b35516

Please sign in to comment.
Something went wrong with that request. Please try again.