diff options
author | Madhura Jayaratne <madhura.cj@gmail.com> | 2016-02-25 12:08:38 +0300 |
---|---|---|
committer | Michal Čihař <michal@cihar.com> | 2016-02-25 14:19:26 +0300 |
commit | 746240bd13b62b5956fc34389cfbdc09e1e67775 (patch) | |
tree | 0d289a5f0d03c020292dc87e5004121da3e4b687 /normalization.php | |
parent | 38fa1191049ac0c626a6684eea52068dfbbb5078 (diff) |
Fix XSS in normalization
Signed-off-by: Madhura Jayaratne <madhura.cj@gmail.com>
Diffstat (limited to 'normalization.php')
-rw-r--r-- | normalization.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/normalization.php b/normalization.php index 4cb9569181..069dabbc0f 100644 --- a/normalization.php +++ b/normalization.php @@ -72,7 +72,7 @@ $scripts = $header->getScripts(); $scripts->addFile('normalization.js'); $scripts->addFile('jquery/jquery.uitablefilter.js'); $normalForm = '1nf'; -if (isset($_REQUEST['normalizeTo'])) { +if (PMA_isValid($_REQUEST['normalizeTo'], array('1nf', '2nf', '3nf'))) { $normalForm = $_REQUEST['normalizeTo']; } if (isset($_REQUEST['createNewTables2NF'])) { |