Skip to content
Permalink
Browse files Browse the repository at this point in the history
fix XSS security issue: escape request_uri in 404 pages
  • Loading branch information
nsams committed Nov 21, 2011
1 parent e681f05 commit 59f81ea
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion Kwf/Exception/Abstract.php
Expand Up @@ -74,7 +74,7 @@ public function render($ignoreCli = false)
$view->exception = $this->getException();
$view->message = $this->getException()->getMessage();
$view->requestUri = isset($_SERVER['REQUEST_URI']) ?
$_SERVER['REQUEST_URI'] : '' ;
htmlspecialchars($_SERVER['REQUEST_URI']) : '' ;
$view->debug = Kwf_Exception::isDebug();
$header = $this->getHeader();
$template = $this->getTemplate();
Expand Down

0 comments on commit 59f81ea

Please sign in to comment.