nettika/phpmyadmin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
10,303 Commits 1 Branch 0 Tags
e3d3ef7af2915cf30bf6f3e69e75f9eb58d94be9
Commit Graph

10303 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Marc Delisle
e3d3ef7af2 Fix merge conflicts 2011-11-10 05:07:54 -05:00
Marc Delisle
bd92c092cd 3.3.10.4 release 2011-08-24 12:16:07 -04:00
Marc Delisle
6aefed1fbc ChangeLog for 3.3.10.4 2011-08-24 12:12:31 -04:00
Herman van Rink
c79375598d Missing sanitization on the table, column and index names leads to XSS vulnerabilities, see PMASA-2011-13 2011-08-19 11:51:21 +02:00
Herman van Rink
a5716cb389 Slightly far fetched XSS prevention 2011-08-19 11:02:22 +02:00
Marc Delisle
ae20845e36 Sanitize filenames before using in Content-Disposition header 2011-08-18 19:18:38 +02:00
Herman van Rink
e11e55cb06 Make better use of PMA_generate_common_url to prevent XSS 2011-08-08 17:31:35 +02:00
Herman van Rink
9d54e57fc8 XSS fixes 2011-08-08 17:15:48 +02:00
Herman van Rink
c78da15827 XSS fixes 2011-08-08 17:03:15 +02:00
Herman van Rink
a6c8a8fe8a XSS fixes 2011-08-08 16:58:08 +02:00
Marc Delisle
3e95b08ced 3.3.10.3 release 2011-07-23 08:03:58 -04:00
Marc Delisle
6cb0ad8a0d 3.3.10.3 release date 2011-07-23 07:54:38 -04:00
Herman van Rink
2254a70fad Updated/fixed Changelog 2011-07-22 20:15:08 +02:00
Herman van Rink
8ac8328229 Backported fix for PMASA-2011-9 to 3.3 2011-07-22 20:14:50 +02:00
Michal Čihař
630b8260be Pass token along with swekey auth requests 2011-07-12 13:07:08 +02:00
Herman van Rink
f6f6ee3f11 [security] Fixed possible session manipulation in swekey authentication, see PMASA-2011-12 2011-07-12 13:07:01 +02:00
Marc Delisle
ab31a2565f 3.3.10.2 release 2011-07-02 20:39:57 -04:00
Herman van Rink
5ee357a572 Fixed filtering of a file path, which allowed for directory traversal, see PMASA-2011-8 2011-06-30 20:19:32 +02:00
Herman van Rink
911a83393e Updated Changelog to add PMASA references 2011-06-30 12:34:16 +02:00
Herman van Rink
ca74f480f1 Fixed regexp quoting issue in Synchronize code 2011-06-30 09:59:43 +02:00
Herman van Rink
2e01647949 Fixed possible code injection incase session variables are compromised 2011-06-29 13:02:00 +02:00
Herman van Rink
6e6e129f26 Fixed possible session corruption in swekey authentication 2011-06-29 08:51:44 +02:00
Marc Delisle
6eae88e65f 3.3.10.1 2011-05-20 13:02:23 -04:00
Marc Delisle
0c2a2a6220 XSS on Tracking page 2011-05-20 12:27:55 -04:00
Herman van Rink
1300510d36 XSS in Tracking page, more 2011-05-19 22:39:43 +02:00
Herman van Rink
452669a174 XSS in Tracking page 2011-05-19 22:16:52 +02:00
Marc Delisle
3e31ab1172 3.3.10 2011-03-19 07:54:50 -04:00
Marc Delisle
a80d0892f8 3.3.10-rc1 2011-03-12 13:30:22 -05:00
Michal Čihař
e71bd6ae1a Resort 2011-02-21 13:47:32 +01:00
Michal Čihař
c722cf64a3 Update German translation, tracker #3187551 2011-02-21 13:46:01 +01:00
Michal Čihař
e905d0bbcc Merge branch 'MAINT_3_3_9' into QA_3_3 2011-02-14 10:44:35 +01:00
Marc Delisle
e165326388 Reference to minor security fixes 2011-02-12 13:37:11 -05:00
Marc Delisle
fdfcd5b9bd 3.3.9.2 release 2011-02-11 12:55:02 -05:00
Marc Delisle
6e750d1d48 3.3.9.2 ChangeLog 2011-02-11 12:53:40 -05:00
Marc Delisle
4812f4ce0f 3.3.9.2 ChangeLog 2011-02-11 12:53:01 -05:00
Michal Čihař
ae9b95f6a7 Merge branch 'MAINT_3_3_9' into QA_3_3 2011-02-11 14:53:56 +01:00
Michal Čihař
7f975c8107 Force bookmark ID to be integer 2011-02-11 14:53:47 +01:00
Michal Čihař
de17abec0d Merge branch 'MAINT_3_3_9' into QA_3_3 2011-02-11 14:23:46 +01:00
Michal Čihař
a5464b4daf Avoid using all users query as default when browsing. 2011-02-11 14:23:34 +01:00
Michal Čihař
e8ac45b724 Merge remote branch 'origin/MAINT_3_3_9' into QA_3_3 2011-02-08 16:20:34 +01:00
Marc Delisle
09b124c272 ChangeLog for 3.3.9.1 2011-02-08 08:20:20 -05:00
Herman van Rink
4c8c7080a7 PMASA-2011-1 fixes 2011-02-08 08:19:20 -05:00
Marc Delisle
06081b8f78 3.3.9.1 release 2011-02-08 08:17:36 -05:00
Herman van Rink
44ace60f77 PMASA-2011-1 fixes 2011-02-08 08:15:01 -05:00
Jacob Middag
df97b1d2c0 Changed yaml export to double quotes for strings 2011-01-13 13:27:21 +01:00
Marc Delisle
31cd4bdd6a bug #3155842 [core] Edit relational page and page number 2011-01-12 08:04:57 -05:00
Marc Delisle
8244589813 Bug #3153409 [core] 0 row(s) affected 2011-01-08 13:44:28 -05:00
Michal Čihař
6135612dbb Ignore another theme. 2011-01-06 09:55:32 +01:00
Michal Čihař
6b91d2ef54 .gitignore from master 2011-01-06 09:54:39 +01:00
Michal Čihař
9ebd401b0e Remove error.php 
Redirecting to other script introduces possibility of inject custom
messages to it. Though there is no clear security issue in this, it
might confuse users and mistake them to go to external site as it allows
to include links.

Conflicts:

	error.php
	libraries/core.lib.php
 2011-01-06 09:36:30 +01:00