Skip to content

Commit

Permalink
bug #4578 [security] XSS vulnerability in table print view
Browse files Browse the repository at this point in the history 
Signed-off-by: Madhura Jayaratne <madhura.cj@gmail.com>
  • Loading branch information
@madhuracj
madhuracj committed Nov 20, 2014
1 parent b99b6b6 commit d32da34
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 1 deletion.
1 change: 1 addition & 0 deletions ChangeLog
View file
Expand Up @@ -15,6 +15,7 @@ phpMyAdmin - ChangeLog
- bug #4444 No insert statement produced in SQL export for queries with alias
- bug #4596 [security] XSS through exception stack
- bug #4595 [security] Path traversal can lead to leakage of line count
- bug #4578 [security] XSS vulnerability in table print view

4.2.11.0 (2014-10-31)
- bug ReferenceError: Table_onover is not defined
Expand Down
2 changes: 1 addition & 1 deletion libraries/tbl_printview.lib.php
View file
Expand Up @@ -107,7 +107,7 @@ function PMA_getHtmlForPrintViewColumns(
$html .= ' ' . $field_name . "\n";
}
$html .= '</td>';
$html .= '<td>' . $type . '<bdo dir="ltr"></bdo></td>';
$html .= '<td>' . htmlspecialchars($type) . '<bdo dir="ltr"></bdo></td>';
$html .= '<td>';
$html .= (($row['Null'] == '' || $row['Null'] == 'NO')
? __('No')
Expand Down

0 comments on commit d32da34

Please sign in to comment.