The annotated tag, RELEASE_2_11_10_1 has been created
at acb28084b99d21da7f6a49cbac70097d51e897e7 (tag)
tagging b1cb5590eefd2977bdb3a6e45796d5a4189e95ad (commit)
replaces RELEASE_2_11_10
tagged by Michal Čihař
on Fri Aug 20 13:47:26 2010 +0200
- Log -----------------------------------------------------------------
Released 2.11.10.1
Herman van Rink (1):
Fix XSS on error with very long query.
Marc Delisle (1):
Fix XSS on delimiter in db_sql.php.
Michal Čihař (17):
Fix XSS on delimiter in tbl_sql.php.
Secure handling of sort_by and sort_order in server_databases.php.
Fix handling of unknown sort order.
Add option to escape PMA_sanitize output.
Escape html chars in form values.
Document PMA_sanitize.
Fix XSS on dbname.
Fix XSS on tablename and pred_tablename.
Fix XSS on username.
Fix XSS on hostname.
Properly escape key name when generating config file.
Fix XSS with $cfg['SQP']['fmtType'] = 'text'.
Fix possible XSS on IIS redirect page.
Avoid information disclossure on error.
Escape error message coming from MySQL to avoid XSS on bad parameters.
Changelog.
Set version to 2.11.10.1.
-----------------------------------------------------------------------
hooks/post-receive
--
phpMyAdmin