mirror_php/php-debugbar
1
0
Fork 0
mirror of https://github.com/maximebf/php-debugbar.git synced 2025-01-17 13:28:35 +01:00
Code Issues Releases Wiki Activity

Escape params

Browse Source 
Escape the params, to prevent html leaking.
This commit is contained in:
Barry vd. Heuvel 2013-11-04 21:53:36 +01:00
parent 71be65fdcd
commit d98b73914d
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
src/DebugBar/DataCollector/PDO/TracedStatement.php
View File

@ -115,7 +115,10 @@ class TracedStatement
*/ */
public function getParameters() public function getParameters()
{ {
return $this->parameters; $params = array();
foreach($this->parameters as $param){
$params[] = htmlentities($param, ENT_QUOTES, 'UTF-8', false);
}
} }
/** /**