Skip to content

Commit ab1283e

Browse files
committed
Fix XSS in User accounts page
Signed-off-by: Madhura Jayaratne <madhura.cj@gmail.com>
1 parent bcd4ce8 commit ab1283e

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

Diff for: libraries/server_privileges.lib.php

+1-1
Original file line numberDiff line numberDiff line change
@@ -3499,7 +3499,7 @@ function PMA_getUsersOverview($result, $db_rights, $pmaThemeImage, $text_dir)
34993499
__('Export'), 'b_tblexport.png', 'export'
35003500
);
35013501
$html_output .= '<input type="hidden" name="initial" '
3502-
. 'value="' . (isset($_GET['initial']) ? $_GET['initial'] : '') . '" />';
3502+
. 'value="' . (isset($_GET['initial']) ? htmlspecialchars($_GET['initial']) : '') . '" />';
35033503
$html_output .= '</div>'
35043504
. '<div class="clear_both" style="clear:both"></div>';
35053505

0 commit comments

Comments
 (0)