for testing and deploying your application
for finding and fixing issues
for empowering human code reviews
<?php
declare(strict_types=1);
namespace PhpMyAdmin;
use PhpMyAdmin\Query\Utilities;
use function explode;
use function strlen;
use function strpos;
/**
* Shared code for server, database and table level pages.
*/
final class Common
{
public static function server(): void
global $db, $table, $url_query, $viewing_mode, $err_url, $is_grantuser, $is_createuser, $dbi;
* Handles some variables that may have been sent by the calling script
* Note: this can be called also from the db panel to get the privileges of
* a db, in which case we want to keep displaying the tabs of
* the Database panel
if (empty($viewing_mode)) {
$db = '';
$table = '';
}
* Set parameters for links
$url_query = Url::getCommon();
* Defines the urls to return to in case of error in a sql statement
$err_url = Url::getFromRoute('/');
$is_grantuser = $dbi->isUserType('grant');
$is_createuser = $dbi->isUserType('create');
// now, select the mysql db
if (! $dbi->isSuperuser()) {
return;
$dbi->selectDb('mysql');
public static function database(): void
global $cfg, $db, $is_show_stats, $db_is_system_schema, $err_url;
global $message, $dbi, $url_query, $errno, $is_db, $err_url_0;
Util::checkParameters(['db']);
$response = Response::getInstance();
$is_show_stats = $cfg['ShowStats'];
$db_is_system_schema = Utilities::isSystemSchema($db);
if ($db_is_system_schema) {
$is_show_stats = false;
$relation = new Relation($dbi);
$operations = new Operations($dbi, $relation);
$err_url_0 = Url::getFromRoute('/');
$err_url = Util::getScriptNameForOption(
$cfg['DefaultTabDatabase'],
'database'
);
$err_url .= Url::getCommon(['db' => $db], strpos($err_url, '?') === false ? '?' : '&');
* Ensures the database exists (else move to the "parent" script) and displays
* headers
if (! isset($is_db) || ! $is_db) {
if (strlen($db) > 0) {
$is_db = $dbi->selectDb($db);
// This "Command out of sync" 2014 error may happen, for example
// after calling a MySQL procedure; at this point we can't select
// the db but it's not necessarily wrong
if ($dbi->getError() && $errno == 2014) {
$is_db = true;
unset($errno);
} else {
$is_db = false;
// Not a valid db name -> back to the welcome page
$params = ['reload' => '1'];
if (isset($message)) {
$params['message'] = $message;
$uri = './index.php?route=/' . Url::getCommonRaw($params, '&');
if (strlen($db) === 0 || ! $is_db) {
if ($response->isAjax()) {
$response->setRequestStatus(false);
$response->addJSON(
'message',
Message::error(__('No databases selected.'))
Core::sendHeaderLocation($uri);
exit;
} // end if (ensures db exists)
* Changes database charset if requested by the user
if (isset($_POST['submitcollation'], $_POST['db_collation']) && ! empty($_POST['db_collation'])) {
[$db_charset] = explode('_', $_POST['db_collation']);
$sql_query = 'ALTER DATABASE ' . Util::backquote($db)
. ' DEFAULT' . Util::getCharsetQueryPart($_POST['db_collation'] ?? '');
$dbi->query($sql_query);
$message = Message::success();
* Changes tables charset if requested by the user
if (isset($_POST['change_all_tables_collations']) &&
$_POST['change_all_tables_collations'] === 'on'
) {
[$tables] = Util::getDbInfo($db, null);
foreach ($tables as $tableName => $data) {
if ($dbi->getTable($db, $tableName)->isView()) {
// Skip views, we can not change the collation of a view.
// issue #15283
continue;
$sql_query = 'ALTER TABLE '
. Util::backquote($db)
. '.'
. Util::backquote($tableName)
PhpMyAdmin\Util::backquote($tableName)
array|mixed|string
concatenation
If this is a false-positive, you can also ignore this issue in your code via the ignore-type annotation
ignore-type
. /** @scrutinizer ignore-type */ Util::backquote($tableName)
. ' DEFAULT '
. Util::getCharsetQueryPart($_POST['db_collation'] ?? '');
* Changes columns charset if requested by the user
if (! isset($_POST['change_all_tables_columns_collations']) ||
$_POST['change_all_tables_columns_collations'] !== 'on'
$operations->changeAllColumnsCollation($db, $tableName, $_POST['db_collation']);
unset($db_charset);
* If we are in an Ajax request, let us stop the execution here. Necessary for
* db charset change action on /database/operations. If this causes a bug on
* other pages, we might have to move this to a different location.
$response->setRequestStatus($message->isSuccess());
$response->addJSON('message', $message);
} elseif (isset($_POST['submitcollation'], $_POST['db_collation']) && empty($_POST['db_collation'])) {
Message::error(__('No collation provided.'))
$url_query = Url::getCommon(['db' => $db]);
public static function table(): void
global $db, $table, $db_is_system_schema, $url_query, $url_params, $cfg, $dbi, $err_url, $err_url_0, $route;
Util::checkParameters(['db', 'table']);
*
* @deprecated
$url_query = Url::getCommon(['db' => $db, 'table' => $table]);
$url_params = [];
$url_params['db'] = $db;
$url_params['table'] = $table;
$err_url_0 = Util::getScriptNameForOption(
$err_url_0 .= Url::getCommon(['db' => $db], strpos($err_url_0, '?') === false ? '?' : '&');
$cfg['DefaultTabTable'],
'table'
$err_url .= Url::getCommon($url_params, strpos($err_url, '?') === false ? '?' : '&');
* Skip test if we are exporting as we can't tell whether a table name is an alias (which would fail the test).
if ($route !== '/table/export') {
DbTableExists::check();
phpmyadmin /
phpmyadmin
Maurício Meneghini Fauth
Maurício Meneghini Fauth
Loading history...