Skip to content

Commit

Permalink
bug #4517 [security] XSS in relation view
Browse files Browse the repository at this point in the history 
Signed-off-by: Marc Delisle <marc@infomarc.info>
  • Loading branch information
@madhuracj @lem9
madhuracj authored and lem9 committed Aug 17, 2014
1 parent 90ddeec commit 3ffc967
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 1 deletion.
1 change: 1 addition & 0 deletions ChangeLog
View file
Expand Up @@ -7,6 +7,7 @@ phpMyAdmin - ChangeLog
- bug #4503 [security] Self-XSSes in monitor
- bug #4504 [security] Self-XSS in query charts
- bug #4505 [security] XSS in view operations page
- bug #4517 [security] XSS in relation view

4.2.7.0 (2014-07-31)
- bug Broken links on home page
Expand Down
2 changes: 1 addition & 1 deletion libraries/tbl_relation.lib.php
View file
Expand Up @@ -554,7 +554,7 @@ function PMA_getHtmlForForeignKey($save_row, $i, $existrel_foreign, $myfield, $d
$html_output .= __('Constraint name');
$html_output .= '<input type="text" name="constraint_name['
. $myfield_md5 . ']"'
. ' value="' . $constraint_name . '"/>';
. ' value="' . htmlspecialchars($constraint_name) . '"/>';
$html_output .= '</span>' . "\n";

$html_output .= '<span class="formelement clearfloat">';
Expand Down

0 comments on commit 3ffc967

Please sign in to comment.