Skip to content

Commit 9952201

Browse files
resolve xss vulnerability
1 parent 4462ca5 commit 9952201

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

Diff for: backend/modules/error/actions/index.php

+1-1
Original file line numberDiff line numberDiff line change
@@ -72,6 +72,6 @@ protected function parse()
7272
}
7373

7474
// assign the correct message into the template
75-
$this->tpl->assign('message', BL::err(SpoonFilter::toCamelCase($errorType, '-')));
75+
$this->tpl->assign('message', BL::err(SpoonFilter::toCamelCase(htmlspecialchars($errorType), '-')));
7676
}
7777
}

0 commit comments

Comments
 (0)