protection against XSS when register_globals is on and .htaccess has no effect

2008-06-21 15:01:27 +00:00
parent b031606c08
commit afbb2a9dc2
73 changed files with 221 additions and 7 deletions
--- a/2
+++ b/2
@@ -89,6 +89,8 @@ danbarry
 - bug #1981043 [export] HTML in exports getting corrupted,
  thanks to Jason Judge - jasonjudge
 - bug #1936761 [interface] BINARY not treated as BLOB: update/delete issues
+- protection against XSS when register_globals is on and .htaccess has
+  no effect, thanks to Tim Starling
 - bug #1996943 [export] Firefox 3 and .sql.gz (corrupted); detect Gecko 1.9,
  thanks to Jürgen Wind - windkiel

--- a/libraries/auth/cookie.auth.lib.php
+++ b/libraries/auth/cookie.auth.lib.php
@@ -8,8 +8,8 @@
 * @version $Id$
 */

-if (! defined('PMA_COMING_FROM_COMMON')) {
-   exit;
+if (! defined('PHPMYADMIN')) {
+    exit;
 }

 require './libraries/auth/swekey/swekey.auth.lib.php';
--- a/libraries/charset_conversion.lib.php
+++ b/libraries/charset_conversion.lib.php
@@ -5,7 +5,9 @@
 *
 * @version $Id$
 */
-
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * Loads the recode or iconv extensions if any of it is not loaded yet
--- a/libraries/check_user_privileges.lib.php
+++ b/libraries/check_user_privileges.lib.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/common.inc.php
+++ b/libraries/common.inc.php
@@ -54,6 +54,11 @@ if (version_compare(phpversion(), '6', 'lt')) {
    @ini_set('magic_quotes_runtime', false);
 }

+/**
+ * for verification in all procedural scripts under libraries
+ */
+define('PHPMYADMIN', true);
+
 /**
 * core functions
 */
@@ -781,9 +786,6 @@ if (! defined('PMA_MINIMUM_COMMON')) {
        // Gets the authentication library that fits the $cfg['Server'] settings
        // and run authentication

-        // (for a quick check of path disclosure in auth/cookies:)
-        define('PMA_COMING_FROM_COMMON', true);
-
        // to allow HTTP or http
        $cfg['Server']['auth_type'] = strtolower($cfg['Server']['auth_type']);
        if (! file_exists('./libraries/auth/' . $cfg['Server']['auth_type'] . '.auth.lib.php')) {
--- a/libraries/database_interface.lib.php
+++ b/libraries/database_interface.lib.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/db_common.inc.php
+++ b/libraries/db_common.inc.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * Gets some core libraries
--- a/libraries/db_events.inc.php
+++ b/libraries/db_events.inc.php
@@ -4,6 +4,10 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}
+
 $url_query .= '&amp;goto=db_structure.php';

 $events = PMA_DBI_fetch_result('SELECT EVENT_NAME, EVENT_TYPE FROM information_schema.EVENTS WHERE EVENT_SCHEMA= \'' . PMA_sqlAddslashes($db,true) . '\';');
--- a/libraries/db_info.inc.php
+++ b/libraries/db_info.inc.php
@@ -33,6 +33,9 @@
 * @uses    addslashes()
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * requirements
--- a/libraries/db_links.inc.php
+++ b/libraries/db_links.inc.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/db_routines.inc.php
+++ b/libraries/db_routines.inc.php
@@ -14,6 +14,10 @@
 *       Also, support DEFINER (like we do in export).
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}
+
 $url_query .= '&amp;goto=db_structure.php';

 $routines = PMA_DBI_fetch_result('SELECT SPECIFIC_NAME,ROUTINE_NAME,ROUTINE_TYPE,DTD_IDENTIFIER FROM information_schema.ROUTINES WHERE ROUTINE_SCHEMA= \'' . PMA_sqlAddslashes($db,true) . '\';');
--- a/libraries/db_table_exists.lib.php
+++ b/libraries/db_table_exists.lib.php
@@ -6,6 +6,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/dbg/setup.php
+++ b/libraries/dbg/setup.php
@@ -3,6 +3,9 @@
 /**
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * checks for DBG extension and trys to load if not loaded
--- a/libraries/dbi/mysql.dbi.lib.php
+++ b/libraries/dbi/mysql.dbi.lib.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * MySQL client API
--- a/libraries/dbi/mysqli.dbi.lib.php
+++ b/libraries/dbi/mysqli.dbi.lib.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 // MySQL client API
 if (!defined('PMA_MYSQL_CLIENT_API')) {
--- a/libraries/display_change_password.lib.php
+++ b/libraries/display_change_password.lib.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 // loic1: autocomplete feature of IE kills the "onchange" event handler and it
 //        must be replaced by the "onpropertychange" one in this case
--- a/libraries/display_create_database.lib.php
+++ b/libraries/display_create_database.lib.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/display_create_table.lib.php
+++ b/libraries/display_create_table.lib.php
@@ -24,6 +24,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/display_export.lib.php
+++ b/libraries/display_export.lib.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/display_import.lib.php
+++ b/libraries/display_import.lib.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/display_select_lang.lib.php
+++ b/libraries/display_select_lang.lib.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * Sorts available languages by their true english names
--- a/libraries/display_tbl_links.lib.php
+++ b/libraries/display_tbl_links.lib.php
@@ -9,6 +9,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/export/codegen.php
+++ b/libraries/export/codegen.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 // this gets executed twice so avoid a notice
 if (! defined('CG_FORMAT_NHIBERNATE_CS')) {
--- a/libraries/export/csv.php
+++ b/libraries/export/csv.php
@@ -3,6 +3,9 @@
 /**
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * Set of functions used to build CSV dumps of tables
--- a/libraries/export/excel.php
+++ b/libraries/export/excel.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/export/htmlexcel.php
+++ b/libraries/export/htmlexcel.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/export/htmlword.php
+++ b/libraries/export/htmlword.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/export/latex.php
+++ b/libraries/export/latex.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/export/ods.php
+++ b/libraries/export/ods.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/export/odt.php
+++ b/libraries/export/odt.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/export/pdf.php
+++ b/libraries/export/pdf.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/export/sql.php
+++ b/libraries/export/sql.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/export/texytext.php
+++ b/libraries/export/texytext.php
@@ -3,6 +3,9 @@
 /**
 * Sample export to Texy! text.
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/export/xls.php
+++ b/libraries/export/xls.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/export/xml.php
+++ b/libraries/export/xml.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/export/yaml.php
+++ b/libraries/export/yaml.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/footer.inc.php
+++ b/libraries/footer.inc.php
@@ -43,6 +43,9 @@
 * @uses    file_exists()
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * for PMA_setHistory()
--- a/libraries/grab_globals.lib.php
+++ b/libraries/grab_globals.lib.php
@@ -8,6 +8,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * copy values from one array to another, usally from a superglobal into $GLOBALS
--- a/libraries/header.inc.php
+++ b/libraries/header.inc.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/header_http.inc.php
+++ b/libraries/header_http.inc.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/header_meta_style.inc.php
+++ b/libraries/header_meta_style.inc.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/header_printview.inc.php
+++ b/libraries/header_printview.inc.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * Gets a core script and starts output buffering work
--- a/libraries/header_scripts.inc.php
+++ b/libraries/header_scripts.inc.php
@@ -4,6 +4,9 @@
 *
 * @version $Id: header.inc.php 10719 2007-10-04 15:03:44Z cybot_tm $
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/iconv_wrapper.lib.php
+++ b/libraries/iconv_wrapper.lib.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/import.lib.php
+++ b/libraries/import.lib.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * We need to know something about user
--- a/libraries/import/csv.php
+++ b/libraries/import/csv.php
@@ -6,6 +6,9 @@
 * @todo    add an option for handling NULL values
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/import/docsql.php
+++ b/libraries/import/docsql.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 require_once './libraries/relation.lib.php';
 $cfgRelation = PMA_getRelationsParam();
--- a/libraries/import/ldi.php
+++ b/libraries/import/ldi.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/import/sql.php
+++ b/libraries/import/sql.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/kanji-encoding.lib.php
+++ b/libraries/kanji-encoding.lib.php
@@ -11,6 +11,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * Gets the php internal encoding codes and sets the available encoding
--- a/libraries/mult_submits.inc.php
+++ b/libraries/mult_submits.inc.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * Prepares the work and runs some other scripts if required
--- a/libraries/mysql_charsets.lib.php
+++ b/libraries/mysql_charsets.lib.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/navigation_header.inc.php
+++ b/libraries/navigation_header.inc.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/opendocument.lib.php
+++ b/libraries/opendocument.lib.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/parse_analyze.lib.php
+++ b/libraries/parse_analyze.lib.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/relation.lib.php
+++ b/libraries/relation.lib.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/relation_cleanup.lib.php
+++ b/libraries/relation_cleanup.lib.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/select_lang.lib.php
+++ b/libraries/select_lang.lib.php
@@ -5,6 +5,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * tries to find the language to use
--- a/libraries/server_common.inc.php
+++ b/libraries/server_common.inc.php
@@ -9,6 +9,9 @@
 * @uses    $userlink
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * Gets some core libraries
--- a/libraries/server_links.inc.php
+++ b/libraries/server_links.inc.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * Check parameters
--- a/libraries/session.inc.php
+++ b/libraries/session.inc.php
@@ -11,6 +11,9 @@
 * @uses    session_start()
 * @uses    ini_set()
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 // verify if PHP supports session, die if it does not

--- a/libraries/sql_query_form.lib.php
+++ b/libraries/sql_query_form.lib.php
@@ -10,6 +10,9 @@
 * @usedby  tbl_structure.php
 * @usedby  querywindow.php
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/sqlparser.data.php
+++ b/libraries/sqlparser.data.php
@@ -21,6 +21,9 @@
 *
 * @version$Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * @global array MySQL function names
--- a/libraries/sqlparser.lib.php
+++ b/libraries/sqlparser.lib.php
@@ -29,7 +29,9 @@
 *
 * @version $Id$
 */
-
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * Minimum inclusion? (i.e. for the stylesheet builder)
--- a/libraries/sqlvalidator.class.php
+++ b/libraries/sqlvalidator.class.php
@@ -27,6 +27,9 @@
 *
 * @version  $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

@include_once 'SOAP/Client.php';

--- a/libraries/sqlvalidator.lib.php
+++ b/libraries/sqlvalidator.lib.php
@@ -29,6 +29,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * We need the PEAR libraries, so do a minimum version check first
--- a/libraries/string.lib.php
+++ b/libraries/string.lib.php
@@ -21,6 +21,9 @@
 * @uses    defined()
 * @todo a .lib filename should not have code in main(), split or rename file
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /* Try to load mbstring */
    if (!@extension_loaded('mbstring')) {
--- a/libraries/tbl_common.php
+++ b/libraries/tbl_common.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * Gets some core libraries
--- a/libraries/tbl_info.inc.php
+++ b/libraries/tbl_info.inc.php
@@ -8,6 +8,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 *
--- a/libraries/tbl_links.inc.php
+++ b/libraries/tbl_links.inc.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * Check parameters
--- a/libraries/tbl_properties.inc.php
+++ b/libraries/tbl_properties.inc.php
@@ -6,6 +6,9 @@
 * included by tbl_addfield.php, -_alter.php, -_create.php
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * Check parameters
--- a/libraries/tbl_replace_fields.inc.php
+++ b/libraries/tbl_replace_fields.inc.php
@@ -29,6 +29,9 @@
 * @uses PMA_NO_VARIABLES_IMPORT
 * @uses PMA_sqlAddslashes()
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 /**
 * do not import request variable into global scope
--- a/libraries/tbl_triggers.lib.php
+++ b/libraries/tbl_triggers.lib.php
@@ -4,6 +4,9 @@
 *
 * @version $Id$
 */
+if (! defined('PHPMYADMIN')) {
+    exit;
+}

 $url_query .= '&amp;goto=tbl_structure.php';