8000 fix XSS vulnerability · symfony/debug@e48bda2 · GitHub
[go: up one dir, main page]

Skip to content
This repository was archived by the owner on Dec 9, 2023. It is now read-only.

Commit e48bda2

Browse files
authored
fix XSS vulnerability
details: symfony/symfony#27987
1 parent 697c527 commit e48bda2

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

ExceptionHandler.php

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -398,7 +398,7 @@ private function formatArgs(array $args)
398398
$formattedValue = str_replace("\n", '', var_export($this->escapeHtml((string) $item[1]), true));
399399
}
400400

401-
$result[] = is_int($key) ? $formattedValue : sprintf("'%s' => %s", $key, $formattedValue);
401+
$result[] = is_int($key) ? $formattedValue : sprintf("'%s' => %s", $this->escapeHtml($key), $formattedValue);
402402
}
403403

404404
return implode(', ', $result);

0 commit comments

Comments
 (0)
0