Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
bug #4530 [security] DOM based XSS that results to a CSRF that create…
…s a ROOT account in certain conditions Signed-off-by: Marc Delisle <marc@infomarc.info>
- Loading branch information
Showing
5 changed files
with
67 additions
and
13 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,31 @@ | ||
<?php | ||
/* vim: set expandtab sw=4 ts=4 sts=4: */ | ||
/** | ||
* Exporting of $goto_whitelist from PHP to Javascript | ||
* | ||
* @package PhpMyAdmin | ||
*/ | ||
|
||
chdir('..'); | ||
|
||
// Send correct type: | ||
header('Content-Type: text/javascript; charset=UTF-8'); | ||
|
||
// Cache output in client - the nocache query parameter makes sure that this | ||
// file is reloaded when config changes | ||
header('Expires: ' . gmdate('D, d M Y H:i:s', time() + 3600) . ' GMT'); | ||
|
||
// Avoid loading the full common.inc.php because this would add many | ||
// non-js-compatible stuff like DOCTYPE | ||
define('PMA_MINIMUM_COMMON', true); | ||
require_once './libraries/common.inc.php'; | ||
// Close session early as we won't write anything there | ||
session_write_close(); | ||
|
||
echo "var PMA_gotoWhitelist = new Array();\n"; | ||
$i = -1; | ||
foreach ($GLOBALS['goto_whitelist'] as $one_whitelist) { | ||
$i++; | ||
echo 'PMA_gotoWhitelist[' . $i . ']="' . $one_whitelist . '";' . "\n"; | ||
} | ||
?> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters