pFad - Phone/Frame/Anonymizer/Declutterfier! Saves Data!


--- a PPN by Garber Painting Akron. With Image Size Reduction included!

URL: http://github.com/phpmyadmin/phpmyadmin/pull/20080

ss" /> Fix #20068 - Fix HTML special chars encoding on triggers and events by bryanhoffman · Pull Request #20080 · phpmyadmin/phpmyadmin · GitHub
Skip to content

Fix #20068 - Fix HTML special chars encoding on triggers and events#20080

Merged
williamdes merged 2 commits intophpmyadmin:masterfrom
bryanhoffman:master
Feb 17, 2026
Merged

Fix #20068 - Fix HTML special chars encoding on triggers and events#20080
williamdes merged 2 commits intophpmyadmin:masterfrom
bryanhoffman:master

Conversation

@bryanhoffman
Copy link
Contributor

@bryanhoffman bryanhoffman commented Feb 6, 2026
edited by williamdes
Loading

Description

Newbie here just trying to learn how this all works. Sorry, I obviously don't know what I'm doing! I thought I saw I was supposed to submit pull requests to the QA branch, but I just got an email saying that I should do it for the master branch. I am trying to learn and I gave my best shot at solving issue #20068

Fixes #20068

Added ENT_NOQUOTES flag to htmlspecialchars so single and double quotes are ignored. The change should remain secure, as I understand that <textarea> is only vulnerable to a </textarea> in its contents, but single and double quotes will be fine.

Signed-off-by: Bryan Hoffman bryanhoffman1@gmail.com

@bryanhoffman
used ENT_NOQUOTES flag to preserve single and double quotes in
a590d0d 
Signed-off-by: Bryan Hoffman <bryanhoffman1@gmail.com>
@williamdes williamdes mentioned this pull request Feb 6, 2026
Closed
@bryanhoffman
Used PHPCBF to wrangle code to project standards
d9c2a92 
Signed-off-by: Bryan Hoffman <bryanhoffman1@gmail.com>
@codecov
Copy link

codecov bot commented Feb 7, 2026
edited
Loading

Codecov Report

❌ Patch coverage is 0% with 2 lines in your changes missing coverage. Please review.
✅ Project coverage is 63.51%. Comparing base (565b9fc) to head (d9c2a92).
⚠️ Report is 207 commits behind head on master.

Files with missing lines Patch % Lines
src/Controllers/Database/EventsController.php 0.00% 2 Missing ⚠️
Additional details and impacted files 
@@             Coverage Diff              @@
##             master   #20080      +/-   ##
============================================
+ Coverage     62.44%   63.51%   +1.06%     
- Complexity    16013    16044      +31     
============================================
  Files           678      679       +1     
  Lines         59847    59910      +63     
============================================
+ Hits          37373    38051     +678     
+ Misses        22474    21859     -615
Flag Coverage Δ
dbase-extension ?
unit-8.2-ubuntu-latest 63.48% <0.00%> (+1.12%) ⬆️
unit-8.3-ubuntu-latest 63.50% <0.00%> (+1.12%) ⬆️
unit-8.4-ubuntu-latest 63.44% <0.00%> (+1.10%) ⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@williamdes williamdes changed the title used ENT_NOQUOTES flag to preserve single and double quotes in Fix #20068 - Fix HTML special chars encoding Feb 17, 2026
@williamdes williamdes merged commit ac1fbe1 into phpmyadmin:master Feb 17, 2026
41 of 44 checks passed
@williamdes williamdes self-assigned this Feb 17, 2026
@williamdes williamdes removed the request for review from MauricioFauth February 17, 2026 09:46
@williamdes williamdes added this to the 6.0.0 milestone Feb 17, 2026
@williamdes williamdes changed the title Fix #20068 - Fix HTML special chars encoding Fix #20068 - Fix HTML special chars encoding on triggers and events Feb 17, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@williamdes williamdes

Labels

None yet

Projects

None yet

Milestone

6.0.0

Development

Successfully merging this pull request may close these issues.

[6.0]: Exported event contains html entities

3 participants

@bryanhoffman @phpmyadmin-bot @williamdes
pFad - Phonifier reborn

Pfad - The Proxy pFad © 2024 Your Company Name. All rights reserved.




Check this box to remove all script contents from the fetched content.



Check this box to remove all images from the fetched content.


Check this box to remove all CSS styles from the fetched content.


Check this box to keep images inefficiently compressed and original size.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy