Permalink
Browse files

fix xss vulnerability

  • Loading branch information...
matthiasmullie committed Feb 28, 2012
1 parent e45964a commit 1269fe8b3813c7b7d5552a2b88bc2e7bd4d0c1f9
Showing with 1 addition and 1 deletion.
  1. +1 −1 backend/modules/error/actions/index.php
@@ -64,7 +64,7 @@ protected function parse()
SpoonHTTP::setHeadersByCode(404);
// give a nice error, so we can detect which file is missing
- echo 'Requested file (' . implode('?', $chunks) . ') not found.';
+ echo 'Requested file (' . htmlspecialchars($this->getParameter('querystring')) . ') not found.';
// stop script execution
exit;

0 comments on commit 1269fe8

Please sign in to comment.