nettika/phpmyadmin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

bug 436108

Browse Source
This commit is contained in:
Marc Delisle
2001-07-02 20:12:55 +00:00
parent 9f8519364f
commit e48d7de32b
2 changed files with 7 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
ChangeLog
View File

@@ -5,6 +5,9 @@ phpMyAdmin - Changelog
$Id$ $Id$
$Source$ $Source$
2001-07-02 Marc Delisle <lem9@users.sourceforge.net>
* bug 436108, quotes into manual requests: db_readdump.php3
2001-07-01 Marc Delisle <lem9@users.sourceforge.net> 2001-07-01 Marc Delisle <lem9@users.sourceforge.net>
* user_details.php3, lang/*: privileges in MySQL-speak * user_details.php3, lang/*: privileges in MySQL-speak
* new script lang/remove_message.sh * new script lang/remove_message.sh

5
db_readdump.php3
View File

@@ -34,7 +34,6 @@ if(!empty($id_bookmark)) {
} }
if($sql_file != "none") { if($sql_file != "none") {
// do file upload // do file upload
if(ereg("^php[0-9A-Za-z_.-]+$", basename($sql_file))) { if(ereg("^php[0-9A-Za-z_.-]+$", basename($sql_file))) {
@@ -57,6 +56,10 @@ if($sql_query != "") {
if (count($pieces) == 1 && !empty($pieces[0]) && $view_bookmark == 0) { if (count($pieces) == 1 && !empty($pieces[0]) && $view_bookmark == 0) {
$sql_query = trim($pieces[0]); $sql_query = trim($pieces[0]);
if (eregi('^CREATE TABLE (.+)', $sql_query)) $reload = "true"; if (eregi('^CREATE TABLE (.+)', $sql_query)) $reload = "true";
// sql.php3 will stripslash the query if get_magic_quotes_gpc
if (get_magic_quotes_gpc() == 1) $sql_query = addslashes($sql_query);
include("./sql.php3"); include("./sql.php3");
exit; exit;
} }