"; //
for easy styling
- echo "";
+ echo "";
echo "
\n";
}
@@ -222,7 +222,7 @@ class Adminer {
function selectLengthPrint($text_length) {
if (isset($text_length)) {
echo "
\n";
}
}
@@ -340,7 +340,7 @@ class Adminer {
global $SELF;
$id = "sql-" . count($_SESSION["messages"]);
$_SESSION["history"][$_GET["server"]][$_GET["db"]][] = $query;
- return "
" . lang('SQL command') . "';
+ return "
" . lang('SQL command') . "';
}
/** Functions displayed in edit form
@@ -422,18 +422,18 @@ class Adminer {
?>
\n";
page_footer("auth");
diff --git a/adminer/include/connect.inc.php b/adminer/include/connect.inc.php
index 8d10be5b..ffe05339 100644
--- a/adminer/include/connect.inc.php
+++ b/adminer/include/connect.inc.php
@@ -2,7 +2,7 @@
function connect_error() {
global $dbh, $SELF, $VERSION;
if (strlen($_GET["db"])) {
- page_header(lang('Database') . ": " . htmlspecialchars($_GET["db"]), lang('Invalid database.'), false);
+ page_header(lang('Database') . ": " . h($_GET["db"]), lang('Invalid database.'), false);
} else {
page_header(lang('Select database'), "", null);
foreach (array(
@@ -11,10 +11,10 @@ function connect_error() {
'processlist' => lang('Process list'),
'variables' => lang('Variables'),
) as $key => $val) {
- echo '
$val\n";
+ echo '
$val\n";
}
echo "
" . lang('MySQL version: %s through PHP extension %s', "server_info < 4.1 ? " class='binary'" : "") . ">$dbh->server_info", "$dbh->extension") . "\n";
- echo "
" . lang('Logged as: %s', "" . htmlspecialchars($dbh->result($dbh->query("SELECT USER()"))) . "") . "\n";
+ echo "
" . lang('Logged as: %s', "" . h($dbh->result($dbh->query("SELECT USER()"))) . "") . "\n";
}
page_footer("db");
}
diff --git a/adminer/include/design.inc.php b/adminer/include/design.inc.php
index 07cd3547..060db123 100644
--- a/adminer/include/design.inc.php
+++ b/adminer/include/design.inc.php
@@ -8,7 +8,7 @@ function page_header($title, $error = "", $breadcrumb = array(), $title2 = "") {
-
name(); ?>
+
name(); ?>
@@ -23,21 +23,21 @@ function page_header($title, $error = "", $breadcrumb = array(), $title2 = "") {
' . (isset($_GET["server"]) ? htmlspecialchars($_GET["server"]) : lang('Server')) . ' » ';
+ echo '
' . (isset($_GET["server"]) ? h($_GET["server"]) : lang('Server')) . ' » ';
if (is_array($breadcrumb)) {
if (strlen($_GET["db"])) {
- echo '' . htmlspecialchars($_GET["db"]) . ' » ';
+ echo '' . h($_GET["db"]) . ' » ';
}
foreach ($breadcrumb as $key => $val) {
$desc = (is_array($val) ? $val[1] : $val);
if (strlen($desc)) {
- echo '' . htmlspecialchars($desc) . ' » ';
+ echo '' . h($desc) . ' » ';
}
}
}
echo "$title\n";
}
- echo "
$title" . (strlen($title2) ? ": " . htmlspecialchars($title2) : "") . "
\n";
+ echo "
$title" . (strlen($title2) ? ": " . h($title2) : "") . "
\n";
if ($_SESSION["messages"]) {
echo "
" . implode("
\n
", $_SESSION["messages"]) . "
\n";
$_SESSION["messages"] = array();
@@ -63,7 +63,7 @@ function page_footer($missing = false) {
diff --git a/adminer/include/editing.inc.php b/adminer/include/editing.inc.php
index 9202a43e..7c515257 100644
--- a/adminer/include/editing.inc.php
+++ b/adminer/include/editing.inc.php
@@ -21,7 +21,7 @@ function edit_type($key, $field, $collations, $foreign_keys = array()) {
global $structured_types, $unsigned, $inout;
?>
- | " size="3">
+ | " size="3">
| |