mirror/php-adminer
1
0
Fork 0
mirror of https://github.com/vrana/adminer.git synced 2025-08-10 08:34:20 +02:00
Code Issues Releases Wiki Activity

CSRF protection of included JavaScript

Browse Source
This commit is contained in:
Jakub Vrana
2010-10-18 01:20:02 +02:00
parent 031a82a4ad
commit 6f5c1981a0
3 changed files with 5 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
adminer/script.inc.php
View File

@@ -1,5 +1,8 @@
<?php
header("Content-Type: text/javascript; charset=utf-8");
if ($_GET["token"] != $token) { // CSRF protection
exit;
}
if ($_GET["script"] == "db") {
$sums = array("Data_length" => 0, "Index_length" => 0, "Data_free" => 0);