[phpMyAdmin Git] [phpmyadmin/phpmyadmin] b69311: Fix self-injection in Table specific privileges

16 Nov 2016

  Branch: refs/heads/QA_4_6
  Home:   https://github.com/phpmyadmin/phpmyadmin
  Commit: b69311e460bd52eebc4402a165c012e63121ef03

https://github.com/phpmyadmin/phpmyadmin/commit/b69311e460bd52eebc4402a165c…
  Author: Deven Bansod &lt;devenbansod.bits(a)gmail.com&gt;
  Date:   2016-11-16 (Wed, 16 Nov 2016)

  Changed paths:
    M libraries/server_privileges.lib.php

  Log Message:
  -----------
  Fix self-injection in Table specific privileges

Don't manually add backticks (`) rather use the Util function,
since escaping of backticks inside the column_name has to be handled too.

Fix #12361

Signed-off-by: Deven Bansod &lt;devenbansod.bits(a)gmail.com&gt;

  Commit: 88b284816cdcbb3783685785f887faa061d0bd07

https://github.com/phpmyadmin/phpmyadmin/commit/88b284816cdcbb3783685785f88…
  Author: Deven Bansod &lt;devenbansod.bits(a)gmail.com&gt;
  Date:   2016-11-16 (Wed, 16 Nov 2016)

  Changed paths:
    M ChangeLog

  Log Message:
  -----------
  ChangeLog for #12361

Signed-off-by: Deven Bansod &lt;devenbansod.bits(a)gmail.com&gt;

Conflicts:
	ChangeLog

  Commit: 80d1bc7c2b6c29b29fe6653ae54d34f8bbb828d4

https://github.com/phpmyadmin/phpmyadmin/commit/80d1bc7c2b6c29b29fe6653ae54…
  Author: Michal Čihař &lt;michal(a)cihar.com&gt;
  Date:   2016-11-16 (Wed, 16 Nov 2016)

  Changed paths:
    M ChangeLog
    M libraries/server_privileges.lib.php

  Log Message:
  -----------
  Merge pull request #12711 from devenbansod/fix_12361

Fix #12361 : Fix self SQL injection in table-specific privileges

Compare: https://github.com/phpmyadmin/phpmyadmin/compare/0c36e5fd8536...80d1bc7c2b6c

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

[phpMyAdmin Git] [phpmyadmin/phpmyadmin] b69311: Fix self-injection in Table specific privileges