nettika/phpmyadmin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

PMA_securePath

Browse Source
This commit is contained in:
Marc Delisle
2004-06-15 16:55:53 +00:00
parent ab543c6ac5
commit 5fb6e7976d
6 changed files with 10 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
tbl_replace.php
View File

@@ -183,7 +183,7 @@ if (empty($valuelist) && empty($query)) {
if ($is_gotofile) {
$js_to_run = 'functions.js';
require_once('./header.inc.php');
require('./' . preg_replace('@\.\.*@', '.', $goto));
require('./' . PMA_securePath($goto));
} else {
PMA_sendHeaderLocation($cfg['PmaAbsoluteUri'] . $goto . '&disp_message=' . urlencode($message) . '&disp_query=');
@@ -235,7 +235,7 @@ if ($is_gotofile) {
$js_to_run = 'functions.js';
$active_page = $goto;
require_once('./header.inc.php');
require('./' . preg_replace('@\.\.*@', '.', $goto));
require('./' . PMA_securePath($goto));
} else {
// I don't understand this one:
//$add_query = (strpos(' ' . $goto, 'tbl_change') ? '&disp_query=' . urlencode($sql_query) : '');