nettika/phpmyadmin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge branch 'QA_3_4' of ssh://phpmyadmin.git.sourceforge.net/gitroot/phpmyadmin/phpmyadmin into QA_3_4

Browse Source
This commit is contained in:
Madhura Jayaratne
2011-11-24 23:12:37 +05:30
parent ff0ea2f9b9 cf5faa1dd1
commit 29455fe79b
6 changed files with 13 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
ChangeLog
View File

@@ -21,6 +21,11 @@ phpMyAdmin - ChangeLog
- [interface] Avoid showing the password in phpinfo()'s output - [interface] Avoid showing the password in phpinfo()'s output
- bug #3441572 [GUI] 'newer version of phpMyAdmin' message not shown in IE8 - bug #3441572 [GUI] 'newer version of phpMyAdmin' message not shown in IE8
- bug #3407235 [interface] Entering the key through a lookup window does not reset NULL - bug #3407235 [interface] Entering the key through a lookup window does not reset NULL
- [security] Self-XSS on database names (Synchronize), see PMASA-2011-18
- [security] Self-XSS on database names (Operations/rename), see PMASA-2011-18
- [security] Self-XSS on column type (Create index), see PMASA-2011-18
- [security] Self-XSS on column type (table Search), see PMASA-2011-18
- [security] Self-XSS on invalid query (table overview), see PMASA-2011-18
3.4.7.1 (2011-11-10) 3.4.7.1 (2011-11-10)
- [security] Fixed possible local file inclusion in XML import - [security] Fixed possible local file inclusion in XML import

2
js/db_operations.js
View File

@@ -32,7 +32,7 @@ $(document).ready(function() {
var $form = $(this); var $form = $(this);
var question = 'CREATE DATABASE ' + $('#new_db_name').val() + ' / DROP DATABASE ' + window.parent.db; var question = escapeHtml('CREATE DATABASE ' + $('#new_db_name').val() + ' / DROP DATABASE ' + window.parent.db);
PMA_prepareForAjaxRequest($form); PMA_prepareForAjaxRequest($form);
/** /**

5
libraries/common.lib.php
View File

@@ -1059,13 +1059,10 @@ function PMA_showMessage($message, $sql_query = null, $type = 'notice', $is_view
} else { } else {
// Parse SQL if needed // Parse SQL if needed
$parsed_sql = PMA_SQP_parse($query_base); $parsed_sql = PMA_SQP_parse($query_base);
if (PMA_SQP_isError()) {
unset($parsed_sql);
}
} }
// Analyze it // Analyze it
if (isset($parsed_sql)) { if (isset($parsed_sql) && ! PMA_SQP_isError()) {
$analyzed_display_query = PMA_SQP_analyze($parsed_sql); $analyzed_display_query = PMA_SQP_analyze($parsed_sql);
// Here we append the LIMIT added for navigation, to // Here we append the LIMIT added for navigation, to
// enable its display. Adding it higher in the code // enable its display. Adding it higher in the code

4
libraries/server_synchronize.lib.php
View File

@@ -1335,7 +1335,7 @@ function PMA_syncDisplayHeaderSource($src_db) {
echo '<table id="serverstatusconnections" class="data" width="55%">'; echo '<table id="serverstatusconnections" class="data" width="55%">';
echo '<tr>'; echo '<tr>';
echo '<th>' . __('Source database') . ': ' . $src_db . '<br />('; echo '<th>' . __('Source database') . ': ' . htmlspecialchars($src_db) . '<br />(';
if ('cur' == $_SESSION['src_type']) { if ('cur' == $_SESSION['src_type']) {
echo __('Current server'); echo __('Current server');
} else { } else {
@@ -1358,7 +1358,7 @@ function PMA_syncDisplayHeaderSource($src_db) {
function PMA_syncDisplayHeaderTargetAndMatchingTables($trg_db, $matching_tables) { function PMA_syncDisplayHeaderTargetAndMatchingTables($trg_db, $matching_tables) {
echo '<table id="serverstatusconnections" class="data" width="43%">'; echo '<table id="serverstatusconnections" class="data" width="43%">';
echo '<tr>'; echo '<tr>';
echo '<th>' . __('Target database') . ': '. $trg_db . '<br />('; echo '<th>' . __('Target database') . ': '. htmlspecialchars($trg_db) . '<br />(';
if ('cur' == $_SESSION['trg_type']) { if ('cur' == $_SESSION['trg_type']) {
echo __('Current server'); echo __('Current server');
} else { } else {

4
tbl_indexes.php
View File

@@ -200,7 +200,7 @@ foreach ($index->getColumns() as $column) {
|| preg_match('/(char|text)/i', $field_type)) { || preg_match('/(char|text)/i', $field_type)) {
echo '<option value="' . htmlspecialchars($field_name) . '"' echo '<option value="' . htmlspecialchars($field_name) . '"'
. (($field_name == $column->getName()) ? ' selected="selected"' : '') . '>' . (($field_name == $column->getName()) ? ' selected="selected"' : '') . '>'
. htmlspecialchars($field_name) . ' [' . $field_type . ']' . htmlspecialchars($field_name) . ' [' . htmlspecialchars($field_type) . ']'
. '</option>' . "\n"; . '</option>' . "\n";
} }
} // end foreach $fields } // end foreach $fields
@@ -222,7 +222,7 @@ for ($i = 0; $i < $add_fields; $i++) {
<?php <?php
foreach ($fields as $field_name => $field_type) { foreach ($fields as $field_name => $field_type) {
echo '<option value="' . htmlspecialchars($field_name) . '">' echo '<option value="' . htmlspecialchars($field_name) . '">'
. htmlspecialchars($field_name) . ' [' . $field_type . ']' . htmlspecialchars($field_name) . ' [' . htmlspecialchars($field_type) . ']'
. '</option>' . "\n"; . '</option>' . "\n";
} // end foreach $fields } // end foreach $fields
?> ?>

4
tbl_select.php
View File

@@ -124,7 +124,7 @@ if (!isset($param) || $param[0] == '') {
?> ?>
<tr class="noclick <?php echo $odd_row ? 'odd' : 'even'; $odd_row = ! $odd_row; ?>"> <tr class="noclick <?php echo $odd_row ? 'odd' : 'even'; $odd_row = ! $odd_row; ?>">
<th><?php echo htmlspecialchars($fields_list[$i]); ?></th> <th><?php echo htmlspecialchars($fields_list[$i]); ?></th>
<td><?php echo $fields_type[$i]; ?></td> <td><?php echo htmlspecialchars($fields_type[$i]); ?></td>
<td><?php echo $fields_collation[$i]; ?></td> <td><?php echo $fields_collation[$i]; ?></td>
<td><select name="func[]"> <td><select name="func[]">
<?php <?php
@@ -190,7 +190,7 @@ if (!isset($param) || $param[0] == '') {
<?php <?php
} elseif (strncasecmp($fields_type[$i], 'enum', 4) == 0) { } elseif (strncasecmp($fields_type[$i], 'enum', 4) == 0) {
// e n u m s // e n u m s
$enum_value=explode(', ', str_replace("'", '', substr($fields_type[$i], 5, -1))); $enum_value=explode(', ', str_replace("'", '', substr(htmlspecialchars($fields_type[$i]), 5, -1)));
$cnt_enum_value = count($enum_value); $cnt_enum_value = count($enum_value);
echo ' <select name="fields[' . $i . '][]"' echo ' <select name="fields[' . $i . '][]"'
.' multiple="multiple" size="' . min(3, $cnt_enum_value) . '">' . "\n"; .' multiple="multiple" size="' . min(3, $cnt_enum_value) . '">' . "\n";