Skip to content
Snippets Groups Projects
Commit 710062aa authored by Martin Kravec's avatar Martin Kravec
Browse files

XSS vulnerability fixed in presentation layer 

Possible vulnerability in /Search/Results?saved=999999999999</p><img src="http://tinyurl.com/n9cs3q4"/>
Reproducable in Firefox, not Opera.
parent 68d57ac2
No related merge requests found
Hide whitespace changes
Inline Side-by-side
themes/bootstrap3/templates/error/index.phtml
+ 1
1
View file @ 710062aa
...@@ -25,7 +25,7 @@ ...@@ -25,7 +25,7 @@
<? if (isset($this->display_exceptions) && $this->display_exceptions): ?> <? if (isset($this->display_exceptions) && $this->display_exceptions): ?>
<h2><?=$this->transEsc('Exception')?>:</h2> <h2><?=$this->transEsc('Exception')?>:</h2>
<p> <p>
<b><?=$this->transEsc('Message')?>:</b> <?=$this->exception->getMessage()?> <b><?=$this->transEsc('Message')?>:</b> <?=$this->escapeHtml($this->exception->getMessage())?>
</p> </p>
<h2><?=$this->transEsc('Backtrace')?>:</h2> <h2><?=$this->transEsc('Backtrace')?>:</h2>
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment