diff --git a/app/exec/sql_query_db.php b/app/exec/sql_query_db.php index 9f8bdc62cf..cd7d11b32c 100644 --- a/app/exec/sql_query_db.php +++ b/app/exec/sql_query_db.php @@ -107,16 +107,16 @@ require_once "resources/paging.php"; echo " \n"; echo "\n"; - if ($result_count > 0) { + if (is_array($result)) { foreach($result as $row) { - $tr_link = "href='exec.php?id=".$row['database_uuid']."'"; + $tr_link = "href='exec.php?id=".escape($row['database_uuid'])."'"; echo "\n"; - echo " ".$row['database_type']." \n"; - echo " ".$row['database_host']." \n"; - echo " ".$row['database_name']." \n"; - echo " ".$row['database_description']." \n"; + echo " ".escape($row['database_type'])." \n"; + echo " ".escape($row['database_host'])." \n"; + echo " ".escape($row['database_name'])." \n"; + echo " ".escape($row['database_description'])." \n"; echo " "; - echo " ".$v_link_label_edit."\n"; + echo " ".$v_link_label_edit."\n"; echo " \n"; echo "\n"; $c = ($c == 0) ? 1 : 0; @@ -129,4 +129,4 @@ require_once "resources/paging.php"; //include the footer require_once "resources/footer.php"; -?> \ No newline at end of file +?>