[phpMyAdmin Git] [phpmyadmin/phpmyadmin] 6943ff: Escape database name in URL
Isaac Bennetch
bennetch at gmail.com
Thu Jun 21 19:39:58 CEST 2018
Branch: refs/heads/QA_4_8
Home: https://github.com/phpmyadmin/phpmyadmin
Commit: 6943fff87324bd54c3a37a5160a5fb77498c355e
https://github.com/phpmyadmin/phpmyadmin/commit/6943fff87324bd54c3a37a5160a5fb77498c355e
Author: William Desportes <williamdes at wdes.fr>
Date: 2018-06-19 (Tue, 19 Jun 2018)
Changed paths:
M js/designer/move.js
Log Message:
-----------
Escape database name in URL
Designer > new page shows iframe when db name is: "'"><iframe onload=alert(1)>
Signed-off-by: William Desportes <williamdes at wdes.fr>
Commit: ead0d0d98520ce0bc5251f58e52e0a3d1809b2fd
https://github.com/phpmyadmin/phpmyadmin/commit/ead0d0d98520ce0bc5251f58e52e0a3d1809b2fd
Author: Isaac Bennetch <bennetch at gmail.com>
Date: 2018-06-19 (Tue, 19 Jun 2018)
Changed paths:
M ChangeLog
Log Message:
-----------
ChangeLog entry for PMASA-2016-03, XSS in Designer.
This is commit 6943fff87324bd54c3a37a5160a5fb77498c355e, cherry-picked
from master.
Signed-off-by: Isaac Bennetch <bennetch at gmail.com>
Commit: 26c6e87682ec0e1e35b8cc5dd03569e55c763dd8
https://github.com/phpmyadmin/phpmyadmin/commit/26c6e87682ec0e1e35b8cc5dd03569e55c763dd8
Author: Isaac Bennetch <bennetch at gmail.com>
Date: 2018-06-21 (Thu, 21 Jun 2018)
Changed paths:
M ChangeLog
M js/designer/move.js
Log Message:
-----------
Merge remote-tracking branch 'security/QA_4_8-security' into QA_4_8
Commit: 2867a95523e533ec30fa63149fd18e6cc5e9cc16
https://github.com/phpmyadmin/phpmyadmin/commit/2867a95523e533ec30fa63149fd18e6cc5e9cc16
Author: Isaac Bennetch <bennetch at gmail.com>
Date: 2018-06-21 (Thu, 21 Jun 2018)
Changed paths:
M ChangeLog
Log Message:
-----------
Update Changelog for RCE/file inclusion security issue
Signed-off-by: Isaac Bennetch <bennetch at gmail.com>
Commit: d363fa02c6d51efa2ca07fd052cbec0377703293
https://github.com/phpmyadmin/phpmyadmin/commit/d363fa02c6d51efa2ca07fd052cbec0377703293
Author: Isaac Bennetch <bennetch at gmail.com>
Date: 2018-06-21 (Thu, 21 Jun 2018)
Changed paths:
M ChangeLog
M README
M doc/conf.py
M libraries/classes/Config.php
Log Message:
-----------
Prepare for version 4.8.2
Signed-off-by: Isaac Bennetch <bennetch at gmail.com>
Commit: 3115f340b933ab95e75785af02d6d497a04f47b3
https://github.com/phpmyadmin/phpmyadmin/commit/3115f340b933ab95e75785af02d6d497a04f47b3
Author: Isaac Bennetch <bennetch at gmail.com>
Date: 2018-06-21 (Thu, 21 Jun 2018)
Changed paths:
A composer.lock
Log Message:
-----------
Adding composer lock for 4.8.2
Signed-off-by: Isaac Bennetch <bennetch at gmail.com>
Commit: 064f6cc0ec62aeb18dc93c52b42ece6244fa9d09
https://github.com/phpmyadmin/phpmyadmin/commit/064f6cc0ec62aeb18dc93c52b42ece6244fa9d09
Author: Isaac Bennetch <bennetch at gmail.com>
Date: 2018-06-21 (Thu, 21 Jun 2018)
Changed paths:
R composer.lock
Log Message:
-----------
Removing composer.lock
Signed-off-by: Isaac Bennetch <bennetch at gmail.com>
Compare: https://github.com/phpmyadmin/phpmyadmin/compare/536b214757ad...064f6cc0ec62
**NOTE:** This service been marked for deprecation: https://developer.github.com/changes/2018-04-25-github-services-deprecation/
Functionality will be removed from GitHub.com on January 31st, 2019.
More information about the Git
mailing list