Merge branch 'QA_4_6-security' into master-security

author: Michal Čihař <michal@cihar.com> 2016-07-22 15:42:09 +0300
committer: Michal Čihař <michal@cihar.com> 2016-07-22 15:42:09 +0300
commit: f72572708f82df83d5d58639d3a2303ff15fb7cf (patch)
tree: bd0793892e2fee9ad6056b42042a92af5b6de39b /url.php
parent: bebb2fe5df0e68b5c9609d457b55bf41dedb43d0 (diff)
parent: d93b8736379ccc5cf0884ed9daa55ab7997b6ccb (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/url.php b/url.php
index 76fc37600a..20a0c9eee6 100644
--- a/url.php
+++ b/url.php
@@ -13,6 +13,11 @@ use PMA\libraries\Sanitize;
 define('PMA_MINIMUM_COMMON', true);
 require_once './libraries/common.inc.php';
 
+// Only output the http headers
+$response = PMA\libraries\Response::getInstance();
+$response->getHeader()->sendHttpHeaders();
+$response->disable();
+
 if (! PMA_isValid($_REQUEST['url'])
     || ! preg_match('/^https:\/\/[^\n\r]*$/', $_REQUEST['url'])
     || ! PMA_isAllowedDomain($_REQUEST['url'])
author	Michal Čihař <michal@cihar.com>	2016-07-22 15:42:09 +0300
committer	Michal Čihař <michal@cihar.com>	2016-07-22 15:42:09 +0300
commit	f72572708f82df83d5d58639d3a2303ff15fb7cf (patch)
tree	bd0793892e2fee9ad6056b42042a92af5b6de39b /url.php
parent	bebb2fe5df0e68b5c9609d457b55bf41dedb43d0 (diff)
parent	d93b8736379ccc5cf0884ed9daa55ab7997b6ccb (diff)