@@ -20,7 +20,7 @@ function doCluster($type, $confirm=false) {
2020
2121 echo "<form action= \"{$ script }\" method= \"post \"> \n" ;
2222 foreach ($ _REQUEST ['ma ' ] as $ v ) {
23- $ a = unserialize (htmlspecialchars_decode ($ v , ENT_QUOTES ));
23+ $ a = safeUnserialize (htmlspecialchars_decode ($ v , ENT_QUOTES ));
2424 echo "<p> " , sprintf ($ lang ['strconfclustertable ' ], $ misc ->printVal ($ a ['table ' ])), "</p> \n" ;
2525 echo "<input type= \"hidden \" name= \"table[] \" value= \"" , htmlspecialchars ($ a ['table ' ]), "\" /> \n" ;
2626 }
@@ -103,7 +103,7 @@ function doReindex($type, $confirm=false) {
103103
104104 echo "<form action= \"{$ script }\" method= \"post \"> \n" ;
105105 foreach ($ _REQUEST ['ma ' ] as $ v ) {
106- $ a = unserialize (htmlspecialchars_decode ($ v , ENT_QUOTES ));
106+ $ a = safeUnserialize (htmlspecialchars_decode ($ v , ENT_QUOTES ));
107107 echo "<p> " , sprintf ($ lang ['strconfreindextable ' ], $ misc ->printVal ($ a ['table ' ])), "</p> \n" ;
108108 echo "<input type= \"hidden \" name= \"table[] \" value= \"" , htmlspecialchars ($ a ['table ' ]), "\" /> \n" ;
109109 }
@@ -181,7 +181,7 @@ function doAnalyze($type, $confirm=false) {
181181
182182 echo "<form action= \"{$ script }\" method= \"post \"> \n" ;
183183 foreach ($ _REQUEST ['ma ' ] as $ v ) {
184- $ a = unserialize (htmlspecialchars_decode ($ v , ENT_QUOTES ));
184+ $ a = safeUnserialize (htmlspecialchars_decode ($ v , ENT_QUOTES ));
185185 echo "<p> " , sprintf ($ lang ['strconfanalyzetable ' ], $ misc ->printVal ($ a ['table ' ])), "</p> \n" ;
186186 echo "<input type= \"hidden \" name= \"table[] \" value= \"" , htmlspecialchars ($ a ['table ' ]), "\" /> \n" ;
187187 }
@@ -256,7 +256,7 @@ function doVacuum($type, $confirm = false) {
256256
257257 echo "<form action= \"{$ script }\" method= \"post \"> \n" ;
258258 foreach ($ _REQUEST ['ma ' ] as $ v ) {
259- $ a = unserialize (htmlspecialchars_decode ($ v , ENT_QUOTES ));
259+ $ a = safeUnserialize (htmlspecialchars_decode ($ v , ENT_QUOTES ));
260260 echo "<p> " , sprintf ($ lang ['strconfvacuumtable ' ], $ misc ->printVal ($ a ['table ' ])), "</p> \n" ;
261261 echo "<input type= \"hidden \" name= \"table[] \" value= \"" , htmlspecialchars ($ a ['table ' ]), "\" /> \n" ;
262262 }
0 commit comments