Permalink
Browse files

resolve xss vulnerability

  • Loading branch information...
1 parent 4462ca5 commit 995220182068518e89019a265d113518f6566407 @matthiasmullie matthiasmullie committed Feb 28, 2012
Showing with 1 addition and 1 deletion.
  1. +1 −1 backend/modules/error/actions/index.php
@@ -72,6 +72,6 @@ protected function parse()
}
// assign the correct message into the template
- $this->tpl->assign('message', BL::err(SpoonFilter::toCamelCase($errorType, '-')));
+ $this->tpl->assign('message', BL::err(SpoonFilter::toCamelCase(htmlspecialchars($errorType), '-')));
}
}

0 comments on commit 9952201

Please sign in to comment.