projects / phppgadmin.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5a29e20) | patch
Fix XSS in function.php, reported by Mateusz Goik.
authorJehan-Guillaume (ioguix) de Rorthais <ioguix@free.fr>
Mon, 27 Feb 2012 22:45:55 +0000 (23:45 +0100)
committerJehan-Guillaume (ioguix) de Rorthais <ioguix@free.fr>
Mon, 27 Feb 2012 22:45:55 +0000 (23:45 +0100)
commit74174ad639664b52cc1609ede0af8bc403e98a00
treeca2d4abe87be8460c1f45982df4544960224fa32tree
parent5a29e20e35f26abfd3ce9d97fd1282c1388b4a5fcommit | diff
Fix XSS in function.php, reported by Mateusz Goik.

I'm not sure why the name and the type the functions were not escaped
*on purpose* here. There's no more reason here than in any other place
with other PostgreSQL objects to not escape the name or the type...
functions.php diff | blob | blame | history
phpPgAdmin is the premiere web based administration tool for PostgreSQL.