diff options
| author | Sebastian Mendel <cybot_tm@users.sourceforge.net> | 2007-11-09 10:41:47 +0300 |
|---|---|---|
| committer | Sebastian Mendel <cybot_tm@users.sourceforge.net> | 2007-11-09 10:41:47 +0300 |
| commit | d35c14a0a9126353971878cc3a34cb1764fb49fd (patch) | |
| tree | 922a8e29f05c92049d206966e792bec3aaa0df08 | |
| parent | 1701c0c9222a7744bc523762ddefd9b621e1e846 (diff) | |
fixed possible SQL injection using database name
| -rw-r--r-- | ChangeLog | 3 | ||||
| -rw-r--r-- | server_privileges.php | 2 |
2 files changed, 4 insertions, 1 deletions
@@ -19,6 +19,9 @@ $HeadURL: https://phpmyadmin.svn.sourceforge.net/svnroot/phpmyadmin/trunk/phpMyA - bug #1826022 [privileges] unable to add user (MySQL 3.23) since PMA 2.11.2 - bug #1823045 [import] Error importing file with lowercase "delimiter" +2.11.2.1 (not yet released) +- fixed possible SQL injection using database name + 2.11.2.0 (2007-10-27) - patch #1791576 HTTP auth: support REDIRECT_REMOTE_USER, thanks to Allard + [lang] Serbian update, thanks to Mihailo Stefanovic diff --git a/server_privileges.php b/server_privileges.php index 012a8d15d7..23d174b986 100644 --- a/server_privileges.php +++ b/server_privileges.php @@ -2033,7 +2033,7 @@ if (empty($adduser) && (! isset($checkprivs) || ! strlen($checkprivs))) { . PMA_convert_using('`Db`') . ' AS `Db`, ' . $list_of_privileges .' FROM `mysql`.`db`' - .' WHERE ' . PMA_convert_using($checkprivs, 'quoted') + .' WHERE ' . PMA_convert_using(PMA_sqlAddslashes($checkprivs), 'quoted') .' LIKE ' . PMA_convert_using('`Db`') .' AND NOT (' . $list_of_compared_privileges. ')) ' .'UNION ' |