summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorLukas Reschke <lukas@statuscode.ch>2013-01-19 19:57:17 +0100
committerLukas Reschke <lukas@statuscode.ch>2013-01-19 19:58:09 +0100
commitfb334f3c1f1ddef27ca2d8c0cd802cb667b79a8d (patch)
tree6d1fb520cce8f2325753b8f8b0e1b1900b3bcf6c
parentb8e03090eada02308f9e46ee228cba7a4553ba6c (diff)
downloadnextcloud-server-fb334f3c1f1ddef27ca2d8c0cd802cb667b79a8d.tar.gz
nextcloud-server-fb334f3c1f1ddef27ca2d8c0cd802cb667b79a8d.zip
Sanitize the exception
-rw-r--r--core/ajax/share.php2
1 files changed, 1 insertions, 1 deletions
diff --git a/core/ajax/share.php b/core/ajax/share.php
index c98a329d0f3..2f5a352c338 100644
--- a/core/ajax/share.php
+++ b/core/ajax/share.php
@@ -99,7 +99,7 @@ if (isset($_POST['action']) && isset($_POST['itemType']) && isset($_POST['itemSo
OCP\Util::sendMail($to_address, $to_address, $subject, $text, $from_address, $user);
OCP\JSON::success();
} catch (Exception $exception) {
- OCP\JSON::error(array('data' => array('message' => $exception->getMessage())));
+ OCP\JSON::error(array('data' => array('message' => OC_Util::sanitizeHTML($exception->getMessage()))));
}
break;
}