diff options
| author | Michal Čihař <michal@cihar.com> | 2016-09-06 12:33:32 +0300 |
|---|---|---|
| committer | Michal Čihař <michal@cihar.com> | 2016-09-06 12:33:32 +0300 |
| commit | 3debfa5d1ff45948024e31ab41859a477097a155 (patch) | |
| tree | 248c1b6a5ed997501ebf55d5562fd2286b6096de /import.php | |
| parent | 92cb95c6d5af2a750039c1e19d93846b784c4af0 (diff) | |
| parent | 9df5aebc22542ce7cc087e0d3e1942f45f45455a (diff) | |
Merge branch 'QA_4_6'
Diffstat (limited to 'import.php')
| -rw-r--r-- | import.php | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/import.php b/import.php index 83bfa76fe0..9c252bb6ca 100644 --- a/import.php +++ b/import.php @@ -691,6 +691,19 @@ if ($go_sql) { // @todo: possibly refactor extract($analyzed_sql_results); + // Check if User is allowed to issue a 'DROP DATABASE' Statement + if (PMA_hasNoRightsToDropDatabase( + $analyzed_sql_results, $cfg['AllowUserDropDatabase'], $GLOBALS['is_superuser'] + )) { + PMA\libraries\Util::mysqlDie( + __('"DROP DATABASE" statements are disabled.'), + '', + false, + $_SESSION['Import_message']['go_back_url'] + ); + return; + } // end if + if ($table != $table_from_sql && !empty($table_from_sql)) { $table = $table_from_sql; } |