fixed possible SQL injection using database name

2007-11-09 07:41:47 +00:00
parent 1701c0c922
commit d35c14a0a9
2 changed files with 4 additions and 1 deletions
--- a/server_privileges.php
+++ b/server_privileges.php
@@ -2033,7 +2033,7 @@ if (empty($adduser) && (! isset($checkprivs) || ! strlen($checkprivs))) {
            .   PMA_convert_using('`Db`') . ' AS `Db`, '
            .   $list_of_privileges
            .' FROM `mysql`.`db`'
-            .' WHERE ' . PMA_convert_using($checkprivs, 'quoted')
+            .' WHERE ' . PMA_convert_using(PMA_sqlAddslashes($checkprivs), 'quoted')
            .' LIKE ' . PMA_convert_using('`Db`')
            .' AND NOT (' . $list_of_compared_privileges. ')) '
            .'UNION '