diff options
author | Lukas Reschke <lukas@statuscode.ch> | 2013-01-19 19:57:17 +0100 |
---|---|---|
committer | Lukas Reschke <lukas@statuscode.ch> | 2013-01-19 19:58:09 +0100 |
commit | fb334f3c1f1ddef27ca2d8c0cd802cb667b79a8d (patch) | |
tree | 6d1fb520cce8f2325753b8f8b0e1b1900b3bcf6c | |
parent | b8e03090eada02308f9e46ee228cba7a4553ba6c (diff) | |
download | nextcloud-server-fb334f3c1f1ddef27ca2d8c0cd802cb667b79a8d.tar.gz nextcloud-server-fb334f3c1f1ddef27ca2d8c0cd802cb667b79a8d.zip |
Sanitize the exception
-rw-r--r-- | core/ajax/share.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/core/ajax/share.php b/core/ajax/share.php index c98a329d0f3..2f5a352c338 100644 --- a/core/ajax/share.php +++ b/core/ajax/share.php @@ -99,7 +99,7 @@ if (isset($_POST['action']) && isset($_POST['itemType']) && isset($_POST['itemSo OCP\Util::sendMail($to_address, $to_address, $subject, $text, $from_address, $user); OCP\JSON::success(); } catch (Exception $exception) { - OCP\JSON::error(array('data' => array('message' => $exception->getMessage()))); + OCP\JSON::error(array('data' => array('message' => OC_Util::sanitizeHTML($exception->getMessage())))); } break; } |