nettika/phpmyadmin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fixed a bug if a record contains html tags

Browse Source
This commit is contained in:
Loïc Chapeaux
2001-05-11 22:56:28 +00:00
parent 41c1ca1416
commit 938f213e6c
2 changed files with 8 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
ChangeLog
View File

@@ -6,6 +6,10 @@ $Id$
$Source$ $Source$
2001-05-11 Lo<4C>c Chapeaux <lolo@phpheaven.net> 2001-05-11 Lo<4C>c Chapeaux <lolo@phpheaven.net>
* lib.inc.php3, lines 76, 81 and 612: fixed a bug if a field contains html
tags (suggested by Olivier Bussier at the phpMyAdmin official forum:
http://www.phpwizard.net/phorum/read.php?f=1&i=3349&t=3349)
set_time_limit() function (Feature #423374)
* lib.inc.php3, lines 496 & 563: put an "@" in front of the calls to the * lib.inc.php3, lines 496 & 563: put an "@" in front of the calls to the
set_time_limit() function (Feature #423374) set_time_limit() function (Feature #423374)
* main.php3: add some empty lines to beautify the start screen and a test that * main.php3: add some empty lines to beautify the start screen and a test that

8
lib.inc.php3
View File

@@ -73,12 +73,12 @@ function mysql_die($error = "") {
echo "<b> $strError </b><p>"; echo "<b> $strError </b><p>";
if(isset($sql_query) && !empty($sql_query)) if(isset($sql_query) && !empty($sql_query))
{ {
echo "$strSQLQuery: <pre>$sql_query</pre><p>"; echo "$strSQLQuery: <pre>".htmlspecialchars($sql_query)."</pre><p>";
} }
if(empty($error)) if(empty($error))
echo $strMySQLSaid.mysql_error(); echo "$strMySQLSaid ".mysql_error();
else else
echo $strMySQLSaid.$error; echo "$strMySQLSaid ".htmlspecialchars($error);
echo "\n<br><a href=\"javascript:history.go(-1)\">$strBack</a>"; echo "\n<br><a href=\"javascript:history.go(-1)\">$strBack</a>";
include("footer.inc.php3"); include("footer.inc.php3");
exit; exit;
@@ -609,7 +609,7 @@ function show_message($message) {
?> ?>
<tr> <tr>
<td bgcolor="<?php echo $GLOBALS['cfgBgcolorOne'];?>"> <td bgcolor="<?php echo $GLOBALS['cfgBgcolorOne'];?>">
<?php echo $GLOBALS['strSQLQuery'].":\n<br>", nl2br($GLOBALS['sql_query']); <?php echo $GLOBALS['strSQLQuery'].":\n<br>", nl2br(htmlspecialchars($GLOBALS['sql_query']));
if (isset($GLOBALS["sql_order"])) echo " $GLOBALS[sql_order]"; if (isset($GLOBALS["sql_order"])) echo " $GLOBALS[sql_order]";
if (isset($GLOBALS["pos"])) echo " LIMIT $GLOBALS[pos], $GLOBALS[cfgMaxRows]";?> if (isset($GLOBALS["pos"])) echo " LIMIT $GLOBALS[pos], $GLOBALS[cfgMaxRows]";?>
</td> </td>