nettika/phpmyadmin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

removed wild chars escaping

Browse Source
This commit is contained in:
Michal Čihař
2003-04-29 13:43:53 +00:00
parent 65f9f2a8f7
commit 9d1f2028e8
2 changed files with 5 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
ChangeLog
View File

@@ -5,6 +5,9 @@ phpMyAdmin - Changelog
$Id$ $Id$
$Source$ $Source$
2003-04-29 Michal Cihar <nijel@users.sourceforge.net>
* server_privileges.php3: No need to escape wild characters here.
2003-04-29 Garvin Hicking <me@supergarv.de> 2003-04-29 Garvin Hicking <me@supergarv.de>
* tbl_move_copy.php3: Bug #729416 * tbl_move_copy.php3: Bug #729416
* tbl_query_box.php3, queryframe.php3: Bug #729446, maybe #728571 * tbl_query_box.php3, queryframe.php3: Bug #729446, maybe #728571

4
server_privileges.php3
View File

@@ -1201,7 +1201,7 @@ if (empty($adduser) && empty($checkprivs)) {
echo ' <select name="pred_dbname" onchange="this.form.submit();">' . "\n" echo ' <select name="pred_dbname" onchange="this.form.submit();">' . "\n"
. ' <option value="" selected="selected">' . $strUseTextField . ':</option>' . "\n"; . ' <option value="" selected="selected">' . $strUseTextField . ':</option>' . "\n";
while (list(, $current_db) = each($pred_db_array)) { while (list(, $current_db) = each($pred_db_array)) {
echo ' <option value="' . htmlspecialchars(PMA_escape_mysql_wildcards($current_db)) . '">' . htmlspecialchars($current_db) . '</option>' . "\n"; echo ' <option value="' . htmlspecialchars($current_db) . '">' . htmlspecialchars($current_db) . '</option>' . "\n";
} }
echo ' </select>' . "\n"; echo ' </select>' . "\n";
} }
@@ -1223,7 +1223,7 @@ if (empty($adduser) && empty($checkprivs)) {
echo ' <select name="pred_tablename" onchange="this.form.submit();">' . "\n" echo ' <select name="pred_tablename" onchange="this.form.submit();">' . "\n"
. ' <option value="" selected="selected">' . $strUseTextField . ':</option>' . "\n"; . ' <option value="" selected="selected">' . $strUseTextField . ':</option>' . "\n";
while (list(, $current_table) = each($pred_tbl_array)) { while (list(, $current_table) = each($pred_tbl_array)) {
echo ' <option value="' . htmlspecialchars(PMA_escape_mysql_wildcards($current_table)) . '">' . htmlspecialchars($current_table) . '</option>' . "\n"; echo ' <option value="' . htmlspecialchars($current_table) . '">' . htmlspecialchars($current_table) . '</option>' . "\n";
} }
echo ' </select>' . "\n"; echo ' </select>' . "\n";
} }