Skip to content

[EventDispatcher] Fix XSS in example event dispatcher #20364

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 31, 2024
Merged

[EventDispatcher] Fix XSS in example event dispatcher #20364

merged 1 commit into from
Oct 31, 2024

Conversation

nicolas-grekas
Copy link
Member

The exception message can contain unfiltered user input.

@nicolas-grekas nicolas-grekas changed the base branch from 7.1 to 5.4 October 31, 2024 10:55
@carsonbot carsonbot changed the title Fix XSS in example event dispatcher [EventDispatcher] Fix XSS in example event dispatcher Oct 31, 2024
@javiereguiluz javiereguiluz merged commit 0037654 into symfony:5.4 Oct 31, 2024
3 checks passed
@javiereguiluz
Copy link
Member

Thanks Nicolas!

@nicolas-grekas nicolas-grekas deleted the ed-xss branch May 10, 2025 17:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@xabbuh xabbuh xabbuh approved these changes

Assignees

No one assigned

Labels

EventDispatcher Status: Reviewed

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@nicolas-grekas @javiereguiluz @xabbuh @carsonbot