diff options
| author | Lukas Reschke <lukas@statuscode.ch> | 2013-01-19 19:57:17 +0100 |
|---|---|---|
| committer | Lukas Reschke <lukas@statuscode.ch> | 2013-01-19 19:57:17 +0100 |
| commit | 8daefd00fbed7dd06da707418b2690e0aed2ea5a (patch) | |
| tree | 3c7f7e1472c5f938025b80a31e39343da3e98875 | |
| parent | 42b924da0e1d24fa85f3c696c4dcdbe8adc383c7 (diff) | |
| download | nextcloud-server-8daefd00fbed7dd06da707418b2690e0aed2ea5a.tar.gz nextcloud-server-8daefd00fbed7dd06da707418b2690e0aed2ea5a.zip | |
Sanitize the exception
| -rw-r--r-- | core/ajax/share.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/core/ajax/share.php b/core/ajax/share.php index 72ffc52e997..077baa8ba56 100644 --- a/core/ajax/share.php +++ b/core/ajax/share.php @@ -98,7 +98,7 @@ if (isset($_POST['action']) && isset($_POST['itemType']) && isset($_POST['itemSo OCP\Util::sendMail($to_address, $to_address, $subject, $text, $from_address, $user); OCP\JSON::success(); } catch (Exception $exception) { - OCP\JSON::error(array('data' => array('message' => $exception->getMessage()))); + OCP\JSON::error(array('data' => array('message' => OC_Util::sanitizeHTML($exception->getMessage())))); } break; } |