[security] Redirect external links to avoid Referer leakage.

This commit is contained in:
Michal Čihař
2011-01-28 13:13:22 +01:00
parent 87b0c30747
commit dc0c6938b2
15 changed files with 60 additions and 31 deletions

View File

@@ -192,7 +192,7 @@ if (top != self) {
?>
<div class="container">
<a href="http://www.phpmyadmin.net" target="_blank" class="logo"><?php
<a href="./url.php?url=http://www.phpmyadmin.net" target="_blank" class="logo"><?php
$logo_image = $GLOBALS['pmaThemeImage'] . 'logo_right.png';
if (@file_exists($logo_image)) {
echo '<img src="' . $logo_image . '" id="imLogo" name="imLogo" alt="phpMyAdmin" border="0" />';

View File

@@ -231,7 +231,7 @@ function Swekey_login($input_name, $input_go)
?>
function open_swekey_site()
{
window.open("http://phpmyadmin.net/auth_key");
window.open("./url.php?url=http://phpmyadmin.net/auth_key");
}
var input_username = document.getElementById("<?php echo $input_name; ?>");