Annajwaszahro
/
MIF_E31222691
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #1305 from nmalcolm/develop 

Fixes XSS vulnerability in Profiler
This commit is contained in:
Taylor Otwell 2012-10-02 17:22:11 -07:00
parent 4d3c68129b 2d5cc12b7b
commit 4f8a6724b0
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
laravel/profiling/profiler.php
View File

@ -148,6 +148,7 @@ public static function query($sql, $bindings, $time)
$binding = Database::connection()->pdo->quote($binding); $binding = Database::connection()->pdo->quote($binding);
$sql = preg_replace('/\?/', $binding, $sql, 1); $sql = preg_replace('/\?/', $binding, $sql, 1);
$sql = htmlspecialchars($sql);
} }
static::$data['queries'][] = array($sql, $time); static::$data['queries'][] = array($sql, $time);