nettika/phpmyadmin
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
11,574 Commits 1 Branch 0 Tags
e6f5e92a271ffaa59def6d025c5c20b4d443aa9d
Commit Graph

3525 Commits

Author SHA1 Message Date
Marc Delisle
4bd5476eed Merge branch 'MAINT_3_3_10' into QA_3_3 2011-11-10 08:36:26 -05:00
Michal Čihař
2fbf631384 Disable XML loading plugins on old PHP 
When libxml_disable_entity_loader is not available, we can not guarantee
safe handling of XML data.
 2011-11-10 05:14:04 -05:00
Michal Čihař
5fa86b8e81 Disable loading of external XML entities when loading XML 
Fixes CVE-2011-4107
 2011-11-10 05:13:35 -05:00
Marc Delisle
bd92c092cd 3.3.10.4 release 2011-08-24 12:16:07 -04:00
Marc Delisle
3e95b08ced 3.3.10.3 release 2011-07-23 08:03:58 -04:00
Marc Delisle
8a5c5c8ef5 Fix merge conflicts 2011-07-23 07:56:45 -04:00
Michal Čihař
630b8260be Pass token along with swekey auth requests 2011-07-12 13:07:08 +02:00
Herman van Rink
f6f6ee3f11 [security] Fixed possible session manipulation in swekey authentication, see PMASA-2011-12 2011-07-12 13:07:01 +02:00
Marc Delisle
b8be5ebe2f Merge branch 'MAINT_3_3_10' into QA_3_3 2011-07-02 20:42:04 -04:00
Marc Delisle
ab31a2565f 3.3.10.2 release 2011-07-02 20:39:57 -04:00
Herman van Rink
5ee357a572 Fixed filtering of a file path, which allowed for directory traversal, see PMASA-2011-8 2011-06-30 20:19:32 +02:00
Herman van Rink
ca74f480f1 Fixed regexp quoting issue in Synchronize code 2011-06-30 09:59:43 +02:00
Herman van Rink
6e6e129f26 Fixed possible session corruption in swekey authentication 2011-06-29 08:51:44 +02:00
Marc Delisle
6eae88e65f 3.3.10.1 2011-05-20 13:02:23 -04:00
Marc Delisle
1ec75facaf Fix merge conflict 2011-05-20 12:29:07 -04:00
Herman van Rink
1300510d36 XSS in Tracking page, more 2011-05-19 22:39:43 +02:00
Marc Delisle
3e31ab1172 3.3.10 2011-03-19 07:54:50 -04:00
Marc Delisle
0527c3ea78 3.3.11-dev 2011-03-12 13:33:43 -05:00
Marc Delisle
a80d0892f8 3.3.10-rc1 2011-03-12 13:30:22 -05:00
Michal Čihař
de17abec0d Merge branch 'MAINT_3_3_9' into QA_3_3 2011-02-11 14:23:46 +01:00
Michal Čihař
a5464b4daf Avoid using all users query as default when browsing. 2011-02-11 14:23:34 +01:00
Marc Delisle
06081b8f78 3.3.9.1 release 2011-02-08 08:17:36 -05:00
Jacob Middag
df97b1d2c0 Changed yaml export to double quotes for strings 2011-01-13 13:27:21 +01:00
Marc Delisle
31cd4bdd6a bug #3155842 [core] Edit relational page and page number 2011-01-12 08:04:57 -05:00
Marc Delisle
8244589813 Bug #3153409 [core] 0 row(s) affected 2011-01-08 13:44:28 -05:00
Michal Čihař
9ebd401b0e Remove error.php 
Redirecting to other script introduces possibility of inject custom
messages to it. Though there is no clear security issue in this, it
might confuse users and mistake them to go to external site as it allows
to include links.

Conflicts:

	error.php
	libraries/core.lib.php
 2011-01-06 09:36:30 +01:00
Madhura Jayaratne
066b746bef patch #3150164 [structure] Ordering by size gives incorrect results 2011-01-03 08:10:49 -05:00
Marc Delisle
08a6fd9c12 3.3.9 2011-01-03 07:04:37 -05:00
Marc Delisle
abbbd192bf 3.3.10-dev 2010-12-22 12:29:09 -05:00
Marc Delisle
eaac45dfda 3.3.9-rc1 release 2010-12-22 12:25:54 -05:00
Aamir Khan
1ceccbd50c fix typo 2010-12-22 15:59:44 +01:00
Dieter Adriaenssens
8afdcbe2b8 bug #3127904, Close all opened round brackets indents 2010-12-13 21:18:33 +01:00
Marc Delisle
b6f717a602 bug #3125606 [parser] Query for table "level" causes strange display 2010-12-11 08:03:50 -05:00
Herman van Rink
f805097b86 bug #3115519: fixed XSS on search 2010-11-26 09:06:09 -05:00
Marc Delisle
5f4604c9bb bug #3103853 [js] Double quotes were not escaped in generated js; I think this only applies to 3.3.x 2010-11-06 07:51:06 -04:00
Michal Čihař
252ab527bc Fix require path. 2010-11-01 10:03:16 +01:00
Marc Delisle
266b8e3aaf 3.3.9-dev 2010-10-18 06:09:38 -04:00
Dieter Adriaenssens
2d7cbdfc4d parameter is already added to url 2010-10-07 21:15:40 +02:00
Dieter Adriaenssens
8c34269e52 bug #3062454, Display routines/events also when no tables are defined 2010-10-07 20:32:07 +02:00
Marc Delisle
1623c7e065 Browsing a table containing geometry columns 2010-10-03 09:20:32 -04:00
Marc Delisle
22fa5adee3 bug #3056023 [import] USE query not working 2010-09-29 08:04:32 -04:00
Dieter Adriaenssens
c0d1c7a2ae export/copy procedures and routines before tables 2010-09-28 19:37:03 +02:00
Dieter Adriaenssens
adaa35a87f Update library PHPExcel to version 1.7.4 2010-09-11 16:18:42 +02:00
Dieter Adriaenssens
f5879655d5 value can be negative 2010-09-11 11:02:14 +02:00
Dieter Adriaenssens
194e357a99 BIGINT field type added to table analysis on import 2010-09-10 17:28:12 +02:00
Marc Delisle
9b846d65a8 3.3.8-dev 2010-08-31 12:11:49 -04:00
Marc Delisle
1b812f2d25 undefined variables after deleting a user 2010-08-30 12:54:12 -04:00
Michal Čihař
061b87f11f bug #3035300 [parser] Fixed wrong definition of keywords. 2010-08-30 17:23:50 +02:00
Michal Čihař
4a234050f2 bug #3054458 [core] Fixed displaying number of rows. 2010-08-30 14:17:51 +02:00
Herman van Rink
d1e9585c9e Merge branch 'QA_3_3' of ssh://phpmyadmin.git.sourceforge.net/gitroot/phpmyadmin/phpmyadmin into QA_3_3 2010-08-24 15:17:11 +02:00