Hi,

Sometimes I got this warning:

Warning:
--
php: fbird_commit(): invalid transaction handle (expecting explicit transaction start) 
in file: /var/www/html/firebirdwebadmin/sql.php, line 190

Thanks!

Hello,

I have many errors in the code when i try to install Firebird web admin with a version of php 8.1.

Can anyone make this install php 8.1?

Good afternoon!
I gotaria to know what gui ( ide ) you used to develop the firebirdwebadmin .
from already thank you ..

I will do this!

Hi,
Other PHP 7 issue:
[Thu Jul 13 09:50:38.446142 2017] [:error] [pid 9682] [client 127.0.0.1:38358] PHP Fatal error: Uncaught Error: Call to undefined function split() in /var/www/html/firebirdwebadmin/inc/debug_funcs.inc.php:27\nStack trace:\n#0 /var/www/html/firebirdwebadmin/views/footer.php(30): show_time_consumption('0.44567700 1499...', '0.44611700 1499...')\n#1 /var/www/html/firebirdwebadmin/inc/script_end.inc.php(80): require_once('/var/www/html/f...')\n#2 /var/www/html/firebirdwebadmin/sql.php(230): require('/var/www/html/f...')\n#3 {main}\n thrown in /var/www/html/firebirdwebadmin/inc/debug_funcs.inc.php on line 27, referer: http://localhost/firebirdwebadmin/sql.php

I use 7.2.34 php version, where have interbase included. I try with other new versions, and no result.

This is the error i get every time:

Warning: Use of undefined constant IBASE_COMMITTED - assumed 'IBASE_COMMITTED' (this will throw an Error in a future version of PHP) in C:\xampp\htdocs\inc\configuration.inc.php on line 137

Warning: Use of undefined constant IBASE_NOWAIT - assumed 'IBASE_NOWAIT' (this will throw an Error in a future version of PHP) in C:\xampp\htdocs\inc\configuration.inc.php on line 137

Warning: Use of undefined constant IBASE_READ - assumed 'IBASE_READ' (this will throw an Error in a future version of PHP) in C:\xampp\htdocs\inc\configuration.inc.php on line 137

Warning: Use of undefined constant IBASE_COMMITTED - assumed 'IBASE_COMMITTED' (this will throw an Error in a future version of PHP) in C:\xampp\htdocs\inc\configuration.inc.php on line 138

Warning: Use of undefined constant IBASE_NOWAIT - assumed 'IBASE_NOWAIT' (this will throw an Error in a future version of PHP) in C:\xampp\htdocs\inc\configuration.inc.php on line 138

Warning: Use of undefined constant IBASE_WRITE - assumed 'IBASE_WRITE' (this will throw an Error in a future version of PHP) in C:\xampp\htdocs\inc\configuration.inc.php on line 138
Your php installation misses the interbase support!
Recompile php and configure --with-interbase[=DIR]
or edit your php.ini to load interbase.so respectively interbase.dll.

Hi,

I have queries return with BLOB columns, but the BLOB is portable to String/text.
If possible try to convert BLOB to String in Select return.

The column "MON$SQL_TEXT" from is an example:
SELECT * FROM MON$STATEMENTS;

Is string but I got BLOB.

Thanks...

Here on my work we don't use suffixes, and this app keep showing error and dont let me login

Recently, our team found a reflected cross-site scripting (XSS) vulnerability
The vulnerability logic is present in the file:
https://github.com/mariuz/firebirdwebadmin/blob/master/panels/tb_droptables.php#L26

The echo directly outputs the parameter $_POST['drop_tables'] without any sanitization. This makes it susceptible to Cross-Site Scripting (XSS) attacks. As a result, attackers can exploit this vulnerability by injecting malicious html code with $_POST['drop_tables']

To fix this vulnerability, we recommend that developers implement properly sanitize (e.g., htmlspecialchars()) for user input before displaying it on the webpage.

fb_lock_print for FB3(?) have mandatory parameter (-d or -f) and statistics can not be retrived now.

Hi,

I have problems with blocks like:

SET TERM !! ;
EXECUTE BLOCK AS
BEGIN
--something
END!!
SET TERM ; !!

Thanks...

Doens't matter character set, the data always come with strange caracters. eg.:"GOI�S VELHO" should be "GOIÁS VELHO" the data is WIN1252

Recently, our team found a reflected cross-site scripting (XSS) vulnerability
The vulnerability logic is present in the file:
https://github.com/mariuz/firebirdwebadmin/blob/master/panels/tb_dropfields.php#L21

The echo directly outputs the parameter $_POST['drop_cols'] without any sanitization. This makes it susceptible to Cross-Site Scripting (XSS) attacks. As a result, attackers can exploit this vulnerability by injecting malicious html code with $_POST['drop_cols']

To fix this vulnerability, we recommend that developers implement properly sanitize (e.g., htmlspecialchars()) for user input before displaying it on the webpage.

Hello,

i tried to install firebirdwebadmin 3.4.1 over my existing 3.4.0 installation.
i just remove old 3.4.0 files and add new 3.4.1 from today and edit the configuration.inc.php file.

but i got this error accessing the web gui:

Parse error: syntax error, unexpected '.', expecting ')' in /var/www/telematica/firebird/inc/functions.inc.php on line 1292

i believe it could correlate with that: #29

do you have any solution for this?
thank you for your help.

Option to select multiple tables to export

Hi Mariuz,

I've been trying to use your webAdming app under Ubuntu 11 in AWS EC2.

I've installed php 5.5.3-lubuntu2, interbase, apache and configurated following these instructions https://help.ubuntu.com/community/Firebird2.5

Unfortunately after all this I'm still getting this errors:

Use of undefined constant IBASE_READ - assumed 'IBASE_READ' in /var/www/firebirdwebadmin/inc/configuration.inc.php on line 199, referer: http://54.204.16.181/firebirdwebadmin/

The same with IBASE_COMMITTED, IBASE_NOWAIT,

Truly appreciated for any hint or advice

Thanks in advance

Kind regards

Hi,

Sometimes I have this error:JavaScript error: http://localhost/firebirdwebadmin/sql.php, line 209: ReferenceError: markableFbwaTable is not defined

I this reference existence test before or reference initialization solve this.
I did not found the source of problem, the code is newer for me.

Thanks...

Section "export data" already present in the Data tab should be available also in the SQL query tab.

please include different port option

Recently, our team found a reflected cross-site scripting (XSS) vulnerability
The vulnerability logic is present in the file:
https://github.com/mariuz/firebirdwebadmin/blob/master/panels/tb_dropfields.php#L27

The echo directly outputs the parameter $_POST['drop_cols'] without any sanitization. This makes it susceptible to Cross-Site Scripting (XSS) attacks. As a result, attackers can exploit this vulnerability by injecting malicious html code with $_POST['drop_cols']

To fix this vulnerability, we recommend that developers implement properly sanitize (e.g., htmlspecialchars()) for user input before displaying it on the webpage.

Hi,

I have problem with:

SET TERM ^ ;
CREATE OR ALTER trigger XXX_YYY0 for AAAAAAAA
active before delete position 0
AS
begin
  --something
end;^
SET TERM ; ^

Thanks!

Would be nice if we could check for ignore BLOB fields on export section.

FirebirdWebAdmin doesn't work with PHP7