ivo/ponzi
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix for double escaping of queries in the profiler

Browse Source 
Sometimes the logged queries would be rendered with visible
HTML entities in the profiler, due to double encoding (You know,
> stuff). I could not find out why it was being escaped
twice, but I found an easy fix: since PHP 5.2.3 the htmlspecialchars
function had a double_encoding parameter that could be set
to false. Voilà!
This commit is contained in:
Eugen
2013-03-23 00:58:43 +01:00
parent 9f64de98f7
commit 944d98d16e
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
laravel/profiling/profiler.php
View File

@@ -148,7 +148,7 @@ class Profiler {
$binding = Database::escape($binding); $binding = Database::escape($binding);
$sql = preg_replace('/\?/', $binding, $sql, 1); $sql = preg_replace('/\?/', $binding, $sql, 1);
$sql = htmlspecialchars($sql); $sql = htmlspecialchars($sql, ENT_QUOTES, 'UTF-8', false);
} }
static::$data['queries'][] = array($sql, $time); static::$data['queries'][] = array($sql, $time);