Author: Kris.Wallsmith
Date: 2010-03-02 21:44:00 +0100 (Tue, 02 Mar 2010)
New Revision: 28353
Modified:
branches/1.3/lib/plugins/sfDoctrinePlugin/lib/debug/sfWebDebugPanelDoctrine.class.php
branches/1.4/lib/plugins/sfDoctrinePlugin/lib/debug/sfWebDebugPanelDoctrine.class.php
Log:
[1.3, 1.4] fixed escaping of Doctrine query parameters in WDT
Modified:
branches/1.3/lib/plugins/sfDoctrinePlugin/lib/debug/sfWebDebugPanelDoctrine.class.php
===================================================================
---
branches/1.3/lib/plugins/sfDoctrinePlugin/lib/debug/sfWebDebugPanelDoctrine.class.php
2010-03-02 20:31:22 UTC (rev 28352)
+++
branches/1.3/lib/plugins/sfDoctrinePlugin/lib/debug/sfWebDebugPanelDoctrine.class.php
2010-03-02 20:44:00 UTC (rev 28353)
@@ -113,6 +113,7 @@
// interpolate parameters
foreach ($params as $param)
{
+ $param = htmlspecialchars($param, ENT_QUOTES,
sfConfig::get('sf_charset'));
$query = join(var_export(is_scalar($param) ? $param : (string) $param,
true), explode('?', $query, 2));
}
Modified:
branches/1.4/lib/plugins/sfDoctrinePlugin/lib/debug/sfWebDebugPanelDoctrine.class.php
===================================================================
---
branches/1.4/lib/plugins/sfDoctrinePlugin/lib/debug/sfWebDebugPanelDoctrine.class.php
2010-03-02 20:31:22 UTC (rev 28352)
+++
branches/1.4/lib/plugins/sfDoctrinePlugin/lib/debug/sfWebDebugPanelDoctrine.class.php
2010-03-02 20:44:00 UTC (rev 28353)
@@ -113,6 +113,7 @@
// interpolate parameters
foreach ($params as $param)
{
+ $param = htmlspecialchars($param, ENT_QUOTES,
sfConfig::get('sf_charset'));
$query = join(var_export(is_scalar($param) ? $param : (string) $param,
true), explode('?', $query, 2));
}
--
You received this message because you are subscribed to the Google Groups
"symfony SVN" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to
[email protected].
For more options, visit this group at
http://groups.google.com/group/symfony-svn?hl=en.
