ivo/ponzi
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fixes XSS vulnerability in Profiler

Browse Source
This commit is contained in:
Nathan Malcolm
2012-10-03 00:53:20 +01:00
parent 4d3c68129b
commit 2d5cc12b7b
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
laravel/profiling/profiler.php
View File

@@ -148,6 +148,7 @@ class Profiler {
$binding = Database::connection()->pdo->quote($binding); $binding = Database::connection()->pdo->quote($binding);
$sql = preg_replace('/\?/', $binding, $sql, 1); $sql = preg_replace('/\?/', $binding, $sql, 1);
$sql = htmlspecialchars($sql);
} }
static::$data['queries'][] = array($sql, $time); static::$data['queries'][] = array($sql, $time);