Skip to content

Commit d648ade

Browse files
committed
Escape binary log name
Signed-off-by: Michal Čihař <michal@cihar.com>
1 parent 8716855 commit d648ade

File tree

1 file changed

+3
-3
lines changed

1 file changed

+3
-3
lines changed

Diff for: templates/server/binlog/log_selector.phtml

+3-3
Original file line numberDiff line numberDiff line change
@@ -7,8 +7,8 @@
77
<?php $full_size = 0; ?>
88
<select name="log">
99
<?php foreach ($binary_logs as $each_log): ?>
10-
<option value="<?= $each_log['Log_name']; ?>"<?= ($each_log['Log_name'] == $_REQUEST['log'] ? ' selected="selected"' : ''); ?>>
11-
<?= $each_log['Log_name']; ?>
10+
<option value="<?= htmlspecialchars($each_log['Log_name']); ?>"<?= ($each_log['Log_name'] == $_REQUEST['log'] ? ' selected="selected"' : ''); ?>>
11+
<?= htmlspecialchars($each_log['Log_name']); ?>
1212
<?php if (isset($each_log['File_size'])): ?>
1313
(<?= implode(' ', \PMA\libraries\Util::formatByteDown($each_log['File_size'], 3, 2)); ?>)
1414
<?php $full_size += $each_log['File_size']; ?>
@@ -24,4 +24,4 @@
2424
<fieldset class="tblFooters">
2525
<input type="submit" value="<?= __('Go'); ?>" />
2626
</fieldset>
27-
</form>
27+
</form>

0 commit comments

Comments
 (0)