[Phpmyadmin-devel] Use of $goto_whitelist

Marc Delisle marc at infomarc.info
Tue Apr 23 15:05:15 CEST 2013

Le 2013-04-23 05:51, ayush choubey a écrit :
> I would like to have a query that what this variable purpose is. As from
> my understanding(if i'm not wrong) it is used to redirect the browser
> where to go after doing certain query/operation isn't it.
> That means whatever the php file names are there in that, to them we can
> redirect right??

Yes. The whitelist exists to avoid attacks via an unexpected script name 
sent in the goto parameter.

Marc Delisle

More information about the Developers mailing list