nettika/phpmyadmin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fixed local path disclosure vulnerability, see PMASA-2011-15

Browse Source
This commit is contained in:
Dieter Adriaenssens
2011-10-03 20:38:36 +02:00
parent b939d1048e
commit fbaa5cc1a1
2 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
ChangeLog
View File

@@ -22,6 +22,7 @@ phpMyAdmin - ChangeLog
- bug #3414744 [core] External link fails in 3.4.5
- patch #3314626 [display] CharTextareaRows is not respected
- bug #3417089 [synchronize] Extraneous db choices
- [security] Fixed local path disclosure vulnerability, see PMASA-2011-15
3.4.5.0 (2011-09-14)
- bug #3375325 [interface] Page list in navigation frame looks odd

2
phpmyadmin.css.php
View File

@@ -9,7 +9,7 @@
*
*/
// sometimes, we lose $_REQUEST['js_frame']
define('PMA_FRAME', empty($_REQUEST['js_frame']) ? 'right' : $_REQUEST['js_frame']);
define('PMA_FRAME', (! empty($_REQUEST['js_frame']) && is_string($_REQUEST['js_frame'])) ? $_REQUEST['js_frame'] : 'right');
define('PMA_MINIMUM_COMMON', true);
require_once './libraries/common.inc.php';