nettika/phpmyadmin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fixed local path disclosure vulnerability, see PMASA-2011-15

Browse Source
This commit is contained in:
Dieter Adriaenssens
2011-10-03 20:38:36 +02:00
parent b939d1048e
commit fbaa5cc1a1
2 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
ChangeLog
View File

@@ -22,6 +22,7 @@ phpMyAdmin - ChangeLog
- bug #3414744 [core] External link fails in 3.4.5 - bug #3414744 [core] External link fails in 3.4.5
- patch #3314626 [display] CharTextareaRows is not respected - patch #3314626 [display] CharTextareaRows is not respected
- bug #3417089 [synchronize] Extraneous db choices - bug #3417089 [synchronize] Extraneous db choices
- [security] Fixed local path disclosure vulnerability, see PMASA-2011-15
3.4.5.0 (2011-09-14) 3.4.5.0 (2011-09-14)
- bug #3375325 [interface] Page list in navigation frame looks odd - bug #3375325 [interface] Page list in navigation frame looks odd

2
phpmyadmin.css.php
View File

@@ -9,7 +9,7 @@
* *
*/ */
// sometimes, we lose $_REQUEST['js_frame'] // sometimes, we lose $_REQUEST['js_frame']
define('PMA_FRAME', empty($_REQUEST['js_frame']) ? 'right' : $_REQUEST['js_frame']); define('PMA_FRAME', (! empty($_REQUEST['js_frame']) && is_string($_REQUEST['js_frame'])) ? $_REQUEST['js_frame'] : 'right');
define('PMA_MINIMUM_COMMON', true); define('PMA_MINIMUM_COMMON', true);
require_once './libraries/common.inc.php'; require_once './libraries/common.inc.php';