[Phpmyadmin-devel] Re: phpMyAdmin 'sql_query' Cross-Site Scripting and SQL Code Execution

20 Apr 2006


      On Thu, 20 Apr 2006 11:23:34 +0200 (CEST)
"Garvin Hicking" phpmyadmin@supergarv.de wrote:
...
Ah, I overread that. Yes, escaping SQL when displaying it would be wise.
This is already done and works fine.
-- 
    Michal Čihař | http://cihar.com

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

[Phpmyadmin-devel] Re: phpMyAdmin 'sql_query' Cross-Site Scripting and SQL Code Execution