Bug #25961
HTML should be escaped in the pre output of DebugExceptionHandler
| Status: | Resolved | Start date: | 2011-04-14 | |
|---|---|---|---|---|
| Priority: | Should have | Due date: | ||
| Assigned To: | Christian Müller | % Done: | 0% |
|
| Category: | Error | |||
| Target version: | TYPO3 Flow Base Distribution - 1.0.5 | |||
| PHP Version: | Complexity: | |||
| Has patch: | No | Affected Flow version: | FLOW3 1.0.0 |
Description
I noticed this today when doing some debugging. Seems the html outputted in the pre tags isn't escaped..
<pre>00173: echo '<html><body><textarea>' . $response . '</textarea></body></html>';
00174: } else {
</pre>
Associated revisions
[BUGFIX] HTML should be escaped in Debug Exception
HTML in the code that is output as part of the stack trace is
escaped now.
Change-Id: I0b2a1bcf5ee72a3212dec8b6541f5e17b6b3c29c
Fixes: #25961
Releases: 1.0, 1.1
[BUGFIX] HTML should be escaped in Debug Exception
HTML in the code that is output as part of the stack trace is
escaped now.
Change-Id: I0b2a1bcf5ee72a3212dec8b6541f5e17b6b3c29c
Fixes: #25961
Releases: 1.0, 1.1
History
#1 Updated by Karsten Dambekalns almost 4 years ago
- Affected Flow version set to FLOW3 1.0.0
#2 Updated by Gerrit Code Review over 3 years ago
- Status changed from New to Under Review
Patch set 1 for branch master has been pushed to the review server.
It is available at http://review.typo3.org/9624
#3 Updated by Gerrit Code Review about 3 years ago
Patch set 1 for branch FLOW3-1.0 has been pushed to the review server.
It is available at http://review.typo3.org/11752
#4 Updated by Karsten Dambekalns about 3 years ago
- Category set to Error
- Assigned To set to Christian Müller
- Target version set to 1.0.5
- Has patch set to No
#5 Updated by Sebastian Kurfuerst about 3 years ago
- Status changed from Under Review to Resolved