nettika/phpmyadmin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

[security] Redirect external links to avoid Referer leakage.

Browse Source
This commit is contained in:
Michal Čihař
2011-01-28 13:13:22 +01:00
parent 87b0c30747
commit dc0c6938b2
15 changed files with 60 additions and 31 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
libraries/config/config_functions.lib.php
View File

@@ -91,10 +91,14 @@ function PMA_lang_link_replace($link, $text)
$separator = PMA_get_arg_separator('html');
}
if (!preg_match('#^http://#', $link)) {
if (!preg_match('#^https?://#', $link)) {
$link = str_replace('&', $separator, $link);
} elseif (defined('PMA_SETUP')) {
$link = '../url.php?url=' . $link;
} else {
$link = './url.php?url=' . $link;
}
return '<a href="' . $link . '">' . $text . '</a>';
}
?>
?>