From 6059c4fc1f3f5de15b96dbc1d1c24a50fa3fa350 Mon Sep 17 00:00:00 2001
From: Marc Delisle <marc@infomarc.info>
Date: Sat, 5 Jan 2008 14:30:41 +0000
Subject: [PATCH] bug #1847409 [security] Path disclosure on
 darkblue_orange/layout.inc.php

---
 ChangeLog                             | 2 ++
 themes/darkblue_orange/layout.inc.php | 5 +++++
 2 files changed, 7 insertions(+)

diff --git a/ChangeLog b/ChangeLog
index 0fcc1d99d..5ebe52224 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -55,6 +55,8 @@ $HeadURL: https://phpmyadmin.svn.sourceforge.net/svnroot/phpmyadmin/trunk/phpMyA
 - patch #1861717 [export] CSV Escape character not exported right,
   thanks to nicolasdigraf
 - bug #1864468 [display] Theme does not switch to darkblue_orange
+- bug #1847409 [security] Path disclosure on darkblue_orange/layout.inc.php,
+  thanks to Jürgen Wind - windkiel
 
 2.11.3.0 (2007-12-08)
 - patch #1818389 to remove a notice (failed to flush buffer), thanks to
diff --git a/themes/darkblue_orange/layout.inc.php b/themes/darkblue_orange/layout.inc.php
index c0b7a3af3..50ed7bf1d 100644
--- a/themes/darkblue_orange/layout.inc.php
+++ b/themes/darkblue_orange/layout.inc.php
@@ -9,6 +9,11 @@
  * @subpackage Darkblue_orange
  */
 
+// protect against path disclosure
+if (empty($_SESSION['PMA_Theme'])) {
+    exit;
+}
+
 /**
  * navi frame
  */