mirror/php-rss-bridge
1
0
Fork 0
mirror of https://github.com/RSS-Bridge/rss-bridge.git synced 2025-10-17 01:26:08 +02:00
Code Issues Releases Wiki Activity

[InvestorsObserverBridge] add LIBXML_NONET to prevent XXE (#4724)

Browse Source
This commit is contained in:
tillcash
2025-09-13 17:35:27 +05:30
committed by GitHub
parent 3d0c41271a
commit 9662abd94d
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
bridges/InvestorsObserverBridge.php
View File

@@ -19,7 +19,7 @@ class InvestorsObserverBridge extends BridgeAbstract
throwServerException('Unable to retrieve sitemap'); throwServerException('Unable to retrieve sitemap');
} }
$sitemap = simplexml_load_string($sitemapXml, null, LIBXML_NOCDATA); $sitemap = simplexml_load_string($sitemapXml, null, LIBXML_NOCDATA | LIBXML_NONET);
if (!$sitemap) { if (!$sitemap) {
throwServerException('Unable to parse sitemap'); throwServerException('Unable to parse sitemap');