beenull/adminerevo
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

Escape LIKE

Browse source 
git-svn-id: https://adminer.svn.sourceforge.net/svnroot/adminer/trunk@157 7c3ca157-0c34-0410-bff1-cbf682f78f5c
This commit is contained in:
jakubvrana 2007-07-13 07:09:58 +00:00
parent 166f9b0b63
commit 5003ad5075
3 changed files with 7 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
create.inc.php
View file

@ -73,7 +73,7 @@ if ($_POST) {
$row["fields"][$row["auto_increment"] - 1]["auto_increment"] = true;
}
} elseif (strlen($_GET["create"])) {
$result = $mysql->query("SHOW TABLE STATUS LIKE '" . $mysql->escape_string($_GET["create"]) . "'");
$result = table_status($_GET["create"]);
$row = $result->fetch_assoc();
$row["name"] = $_GET["create"];
$row["fields"] = array_values(fields($_GET["create"]));

5
functions.inc.php
View file

@ -40,6 +40,11 @@ function get_vals($query) {
return $return;
}
function table_status($table) {
global $mysql;
return $mysql->query("SHOW TABLE STATUS LIKE '" . $mysql->escape_string(addcslashes($table, "%_")) . "'");
}
function fields($table) {
global $mysql;
$return = array();

2
table.inc.php
View file

@ -51,7 +51,7 @@ if (!$result) {
}
if ($mysql->server_info >= 5) {
$result = $mysql->query("SHOW TRIGGERS LIKE '" . $mysql->escape_string($_GET["table"]) . "'");
$result = $mysql->query("SHOW TRIGGERS LIKE '" . $mysql->escape_string(addcslashes($_GET["table"], "%_")) . "'");
if ($result->num_rows) {
echo "<h3>" . lang('Triggers') . "</h3>\n";
echo "<table border='0' cellspacing='0' cellpadding='2'>\n";