nettika/phpmyadmin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
8,789 Commits 1 Branch 0 Tags
828d01d2035e154227e117f268b10b259590949c
Commit Graph

2781 Commits

Author SHA1 Message Date
Michal Čihař
6488ee49ab Merge branch 'MAINT_2_11_11' into QA_2_11 2011-02-11 14:23:09 +01:00
Michal Čihař
2fa4c8d97a Avoid using all users query as default when browsing. 2011-02-11 14:22:59 +01:00
Marc Delisle
448940b37b 2.11.11.2 release 2011-02-08 08:07:22 -05:00
Michal Čihař
b01a58118f Remove error.php 
Redirecting to other script introduces possibility of inject custom
messages to it. Though there is no clear security issue in this, it
might confuse users and mistake them to go to external site as it allows
to include links.

Conflicts:

	error.php
	libraries/core.lib.php
 2011-01-06 09:39:23 +01:00
Marc Delisle
a6e79391b9 2.11.11.1 release 2010-11-26 09:17:30 -05:00
Herman van Rink
3756112c7f bug #3115519: fixed XSS on search 2010-11-26 08:54:13 -05:00
Herman van Rink
e1f4901ffc bug #3115519: fixed XSS on search 2010-11-26 08:49:56 -05:00
Marc Delisle
e6aeaf1925 2.11.11 release 2010-09-07 12:16:12 -04:00
Marc Delisle
510a5c0b69 2.11.12-dev 2010-08-31 12:18:02 -04:00
Marc Delisle
0e4369a8d2 2.11.11-rc1 2010-08-31 12:16:00 -04:00
Michal Čihař
20c8780437 bug #3054458 [core] Fixed displaying number of rows. 2010-08-30 14:15:23 +02:00
Michal Čihař
c1865ca7b8 Merge branch 'MAINT_2_11_10' into QA_2_11 
Conflicts:
	ChangeLog
	Documentation.html
	README
	libraries/Config.class.php
	translators.html
 2010-08-20 13:32:34 +02:00
Michal Čihař
b1cb5590ee Set version to 2.11.10.1. 2010-08-20 13:26:54 +02:00
Michal Čihař
a88dbaf305 Escape error message coming from MySQL to avoid XSS on bad parameters. 2010-08-20 11:36:05 +02:00
Michal Čihař
2051a861f8 Fix possible XSS on IIS redirect page. 2010-08-20 11:19:28 +02:00
Herman van Rink
0fd0512c9b Fix XSS on error with very long query. 2010-08-20 10:42:53 +02:00
Michal Čihař
4a50055d52 Fix XSS with $cfg['SQP']['fmtType'] = 'text'. 2010-08-20 10:39:26 +02:00
Michal Čihař
0fe30236fa Document PMA_sanitize. 2010-08-18 11:47:54 +02:00
Michal Čihař
c69fca50ee Add option to escape PMA_sanitize output. 
This is required when it is used in form values.
 2010-08-18 11:47:35 +02:00
Michal Čihař
c910f4c9ec Fix handling of unknown sort order. 2010-08-18 11:46:29 +02:00
Marc Delisle
8535d48ae9 2.11.10 release 2009-12-07 17:13:18 +00:00
Marc Delisle
13fc94b844 2.11.11-dev 2009-12-07 17:01:31 +00:00
Michal Čihař
36ddf8b61e Escape special chars when displaying filename template cookies. 2009-03-24 08:55:07 +00:00
Michal Čihař
0d4adbfc19 [security] possible XSRF on several pages 2008-12-09 13:45:32 +00:00
Marc Delisle
9155163f6e typos 2008-09-22 14:09:44 +00:00
Michal Čihař
44f9f2f8b7 XSS in MSIE using NUL byte, thanks to JPCERT. 2008-09-22 10:13:32 +00:00
Marc Delisle
f8d65ec564 [security] Code execution vulnerability 2008-09-15 12:03:45 +00:00
Michal Čihař
6c96a59db5 Do not automatically set and create TempDir, it might lead to secrity issue (thanks to Thijs Kinkhorst). 2008-09-02 17:35:48 +00:00
Marc Delisle
ca5d9f1afc typos 2008-08-29 16:38:37 +00:00
Michal Čihař
8fcdad4306 safer handling of temporary files with open_basedir (thanks to Thijs Kinkhorst) 2008-08-29 15:49:06 +00:00
Marc Delisle
274b5c9eed 2.11.9 and 2.11.10-dev 2008-08-28 16:41:57 +00:00
Marc Delisle
454d50201b bug #2074250 [parser] Undefined variable seen_from 2008-08-28 16:17:53 +00:00
Marc Delisle
de7abbdd5b bug #2045512 [export] Numbers in Excel export 2008-08-13 16:28:43 +00:00
Marc Delisle
f2e2499116 bug #2037375 [export] DROP PROCEDURE needs IF EXISTS 2008-08-09 13:58:44 +00:00
Marc Delisle
f5e6b809dd bug #2037381 [export] Export type "replace" does not work 2008-08-06 17:25:31 +00:00
Marc Delisle
f969ed1fa6 bug #2004915 [bookmarks] Saved queries greater than 1000 chars not displayed 2008-08-01 20:02:21 +00:00
Marc Delisle
55f1bc4d38 bug #2032707 [core] PMA does not start if ini_set() is disabled 2008-08-01 19:15:01 +00:00
Marc Delisle
f5159676c2 bug #2031221 [auth] Links to version number on login screen 2008-08-01 19:00:36 +00:00
Marc Delisle
6e33006754 bug #2027102 quotes around lang missing 2008-07-25 12:25:33 +00:00
Marc Delisle
a56294f275 revert language changing problem introduced with 2.11.7.1; version number 2.11.8-rc1 2008-07-24 18:01:10 +00:00
Marc Delisle
87e7ed2709 2.11.9-dev 2008-07-24 17:48:59 +00:00
Marc Delisle
976a3e461b protection against cross-frame scripting 2008-07-24 17:12:32 +00:00
Marc Delisle
d38b5d6ff5 bug #2022182 [import, export] Import/Export fails because of Mac files 2008-07-23 16:55:33 +00:00
Marc Delisle
784ee3063c bug #2018595 [import] Potential data loss on import resubmit 2008-07-17 14:02:26 +00:00
Marc Delisle
d7e910e296 port 2.11.7.1 fix 2008-07-15 18:42:50 +00:00
Marc Delisle
c221da970d remove version info on cookie login screen 2008-07-15 14:14:09 +00:00
Marc Delisle
afb3903291 display Language with emphasis when a non-English language is chosen 2008-07-09 15:33:49 +00:00
Marc Delisle
4025975910 Do not save too big queries in history 2008-07-09 14:17:19 +00:00
Marc Delisle
3aca3caafb Font size option problem when no config file 2008-06-28 15:46:54 +00:00
Marc Delisle
0c5bf4a983 bug #1989281 [export] CSV for MS Excel incorrect escaping of double quotes 2008-06-28 14:17:11 +00:00