composer/iTop
6
0
Fork 0
mirror of https://github.com/Combodo/iTop.git synced 2026-04-22 01:58:47 +02:00
Code Issues Packages Projects Releases Wiki Activity

Bug fix: do NOT display the call stack in case of error/exception since it may contain sensitive information.

Browse Source 
SVN:2.1.0[3589]
This commit is contained in:
Denis Flaven
2015-06-05 13:52:07 +00:00
parent ed85260bb3
commit 17a8a896dc
1 changed files with 1 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
pages/ajax.render.php
View File

@@ -1732,8 +1732,7 @@ catch (Exception $e)
{
// note: transform to cope with XSS attacks
echo htmlentities($e->GetMessage(), ENT_QUOTES, 'utf-8');
echo "<p>Debug trace: <pre>".$e->getTraceAsString()."</pre></p>\n";
IssueLog::Error($e->getMessage());
IssueLog::Error($e->getMessage()."\nDebug trace:\n".$e->getTraceAsString()); // Do NOT display the call stack since it may contain sensitive information
}