beenull/adminerevo
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

Fix XSS in indexes (non-MySQL only)

Browse source
This commit is contained in:
Jakub Vrana 2015-11-08 11:41:44 -08:00
parent 6c6bb45d3d
commit 4be0b6655e
2 changed files with 2 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
adminer/indexes.inc.php
View file

@ -117,7 +117,7 @@ foreach ($row["indexes"] as $index) {
$i = 1;
foreach ($index["columns"] as $key => $column) {
echo "<span>" . select_input(
" name='indexes[$j][columns][$i]' onchange=\"" . ($i == count($index["columns"]) ? "indexesAddColumn" : "indexesChangeColumn") . "(this, '" . js_escape($jush == "sql" ? "" : $_GET["indexes"] . "_") . "');\"",
" name='indexes[$j][columns][$i]' onchange=\"" . ($i == count($index["columns"]) ? "indexesAddColumn" : "indexesChangeColumn") . "(this, '" . h(js_escape($jush == "sql" ? "" : $_GET["indexes"] . "_")) . "');\"",
($fields ? array_combine($fields, $fields) : $fields),
$column
);

1
changes.txt
View file

@ -1,4 +1,5 @@
Adminer 4.2.3-dev:
Fix XSS in indexes (non-MySQL only)
Support PHP 7
Greek translation
Galician translation