mirror/php-adminer
1
0
Fork 0
mirror of https://github.com/vrana/adminer.git synced 2025-08-09 08:06:59 +02:00
Code Issues Releases Wiki Activity

Function parse_str respects magic_quotes_gpc (bug #3034575)

Browse Source
This commit is contained in:
Jakub Vrana
2010-07-26 14:47:26 +02:00
parent 6e50eb8ec0
commit 72f4d9e245
2 changed files with 22 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
adminer/include/functions.inc.php
View File

@@ -26,6 +26,26 @@ function escape_string($val) {
return substr($connection->quote($val), 1, -1);
}
/** Disable magic_quotes_gpc
* @param array e.g. (&$_GET, &$_POST, &$_COOKIE)
* @return null modified in place
*/
function remove_slashes($process) {
if (get_magic_quotes_gpc()) {
while (list($key, $val) = each($process)) {
foreach ($val as $k => $v) {
unset($process[$key][$k]);
if (is_array($v)) {
$process[$key][stripslashes($k)] = $v;
$process[] = &$process[$key][stripslashes($k)];
} else {
$process[$key][stripslashes($k)] = ($filter ? $v : stripslashes($v));
}
}
}
}
}
/** Escape or unescape string to use inside form []
* @param string
* @param bool
@@ -214,6 +234,7 @@ function where($where) {
*/
function where_check($val) {
parse_str($val, $check);
remove_slashes(array(&$check));
return where($check);
}