From: <sy...@us...> - 2006-11-02 18:37:16
|
Update of /cvsroot/tikiwiki/tiki/lib In directory sc8-pr-cvs10.sourceforge.net:/tmp/cvs-serv4852/lib Modified Files: Tag: BRANCH-1-9 tikidblib.php Log Message: do not reveal a part of the path if error Index: tikidblib.php =================================================================== RCS file: /cvsroot/tikiwiki/tiki/lib/tikidblib.php,v retrieving revision 1.11.2.8 retrieving revision 1.11.2.9 diff -u -d -r1.11.2.8 -r1.11.2.9 --- tikidblib.php 1 Nov 2006 21:09:02 -0000 1.11.2.8 +++ tikidblib.php 2 Nov 2006 18:37:08 -0000 1.11.2.9 @@ -136,9 +136,9 @@ //trigger_error($ADODB_LASTDB . " error: " . $this->db->ErrorMsg(). " in query:<br />" . $query . "<br />", E_USER_WARNING); $outp = "<div class='simplebox'><b>".tra("An error occured in a database query!")."</b></div>"; $outp.= "<br /><table class='form'>"; - $outp.= "<tr class='heading'><td colspan='2'>Context:</td></tr>"; - $outp.= "<tr class='formcolor'><td>File</td><td>".$_SERVER['SCRIPT_NAME']."</td></tr>"; - $outp.= "<tr class='formcolor'><td>Url</td><td>".$_SERVER['REQUEST_URI']."</td></tr>"; + $outp.= "<tr class='heading'><td colspan='2'>Context:</td></tr>"; + $outp.= "<tr class='formcolor'><td>File</td><td>".basename($_SERVER['SCRIPT_NAME'])."</td></tr>"; + $outp.= "<tr class='formcolor'><td>Url</td><td>".basename($_SERVER['REQUEST_URI'])."</td></tr>"; $outp.= "<tr class='heading'><td colspan='2'>Query:</td></tr>"; $outp.= "<tr class='formcolor'><td colspan='2'><tt>$query</tt></td></tr>"; $outp.= "<tr class='heading'><td colspan='2'>Values:</td></tr>"; @@ -157,7 +157,7 @@ } else { echo $outp; } - // -- debugging stuff: + // -- debugging stuff: after php 5.1.1 will disclose db user and password // echo "<pre>"; // var_dump(debug_backtrace()); // echo "</pre>"; |