nettika/phpmyadmin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix for Empty and Drop vulnerabilities on db Structure and Operations, see PMASA-2012-4

Browse Source
This commit is contained in:
Marc Delisle
2012-08-09 13:13:08 -04:00
committed by Dieter Adriaenssens
parent 3345d64a6f
commit d84b98d340
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
js/db_structure.js
View File

@@ -75,7 +75,7 @@ $(document).ready(function() {
/** /**
* @var question String containing the question to be asked for confirmation * @var question String containing the question to be asked for confirmation
*/ */
var question = 'TRUNCATE ' + curr_table_name; var question = 'TRUNCATE ' + escapeHtml(curr_table_name);
$this_anchor.PMA_confirm(question, $this_anchor.attr('href'), function(url) { $this_anchor.PMA_confirm(question, $this_anchor.attr('href'), function(url) {
@@ -125,7 +125,7 @@ $(document).ready(function() {
/** /**
* @var question String containing the question to be asked for confirmation * @var question String containing the question to be asked for confirmation
*/ */
var question = 'DROP TABLE ' + curr_table_name; var question = 'DROP TABLE ' + escapeHtml(curr_table_name);
$this_anchor.PMA_confirm(question, $this_anchor.attr('href'), function(url) { $this_anchor.PMA_confirm(question, $this_anchor.attr('href'), function(url) {