diff options
author | Michal Čihař <michal@cihar.com> | 2016-07-22 15:42:09 +0300 |
---|---|---|
committer | Michal Čihař <michal@cihar.com> | 2016-07-22 15:42:09 +0300 |
commit | f72572708f82df83d5d58639d3a2303ff15fb7cf (patch) | |
tree | bd0793892e2fee9ad6056b42042a92af5b6de39b /url.php | |
parent | bebb2fe5df0e68b5c9609d457b55bf41dedb43d0 (diff) | |
parent | d93b8736379ccc5cf0884ed9daa55ab7997b6ccb (diff) |
Merge branch 'QA_4_6-security' into master-security
Diffstat (limited to 'url.php')
-rw-r--r-- | url.php | 5 |
1 files changed, 5 insertions, 0 deletions
@@ -13,6 +13,11 @@ use PMA\libraries\Sanitize; define('PMA_MINIMUM_COMMON', true); require_once './libraries/common.inc.php'; +// Only output the http headers +$response = PMA\libraries\Response::getInstance(); +$response->getHeader()->sendHttpHeaders(); +$response->disable(); + if (! PMA_isValid($_REQUEST['url']) || ! preg_match('/^https:\/\/[^\n\r]*$/', $_REQUEST['url']) || ! PMA_isAllowedDomain($_REQUEST['url']) |