[Phpmyadmin-devel] Use of $goto_whitelist
Marc Delisle
marc at infomarc.info
Tue Apr 23 15:05:15 CEST 2013
Le 2013-04-23 05:51, ayush choubey a écrit :
> I would like to have a query that what this variable purpose is. As from
> my understanding(if i'm not wrong) it is used to redirect the browser
> where to go after doing certain query/operation isn't it.
>
> That means whatever the php file names are there in that, to them we can
> redirect right??
Yes. The whitelist exists to avoid attacks via an unexpected script name
sent in the goto parameter.
--
Marc Delisle
http://infomarc.info
More information about the Developers
mailing list