nettika/phpmyadmin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

I think htmlspecialchars should be used here

Browse Source
This commit is contained in:
Michal Čihař
2011-06-21 12:08:48 +02:00
parent cb043f4365
commit dc6c1e8b5c
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
import.php
View File

@@ -108,7 +108,7 @@ if ($import_type == 'table') {
} }
$err_url = $goto $err_url = $goto
. '?' . $common . '?' . $common
. (preg_match('@^tbl_[a-z]*\.php$@', $goto) ? '&table=' . urlencode($table) : ''); . (preg_match('@^tbl_[a-z]*\.php$@', $goto) ? '&table=' . htmlspecialchars($table) : '');
$_SESSION['Import_message']['go_back_url'] = $err_url; $_SESSION['Import_message']['go_back_url'] = $err_url;
} }