SONAR-12370 Prevent potential vulnerability with web API api/l10n/index

2 files changed, 2 insertions, 2 deletions

diff --git a/server/sonar-server/src/main/java/org/sonar/server/platform/ws/IndexAction.java b/server/sonar-server/src/main/java/org/sonar/server/platform/ws/IndexAction.java
index 27f121ca85c..dc194a049a0 100644
--- a/server/sonar-server/src/main/java/org/sonar/server/platform/ws/IndexAction.java
+++ b/server/sonar-server/src/main/java/org/sonar/server/platform/ws/IndexAction.java
@@ -71,7 +71,7 @@ public class IndexAction implements WsAction {
     }
     String localeParam = request.mandatoryParam(LOCALE_PARAM);
     Locale locale = Locale.forLanguageTag(localeParam);
-    checkArgument(!locale.getISO3Language().isEmpty(), "'%s' cannot be parsed as a BCP47 language tag", localeParam);
+    checkArgument(!locale.getISO3Language().isEmpty(), "Locale cannot be parsed as a BCP47 language tag");
 
     try (JsonWriter json = response.newJsonWriter()) {
       json.beginObject();
diff --git a/server/sonar-server/src/test/java/org/sonar/server/platform/ws/IndexActionTest.java b/server/sonar-server/src/test/java/org/sonar/server/platform/ws/IndexActionTest.java
index d950ea2c7d5..fd672900e98 100644
--- a/server/sonar-server/src/test/java/org/sonar/server/platform/ws/IndexActionTest.java
+++ b/server/sonar-server/src/test/java/org/sonar/server/platform/ws/IndexActionTest.java
@@ -134,7 +134,7 @@ public class IndexActionTest {
     when(i18n.getEffectiveLocale(UK)).thenReturn(UK);
 
     expectedException.expect(IllegalArgumentException.class);
-    expectedException.expectMessage("'en_GB' cannot be parsed as a BCP47 language tag");
+    expectedException.expectMessage("Locale cannot be parsed as a BCP47 language tag");
     call("en_GB", null);
   }