Commit: 257c114b05462d5d65ee6efffabd28ad59889b69 Author: Christoph M. Becker <[email protected]> Wed, 18 Sep 2019 13:26:20 +0200 Parents: ce9c82af403508804a1240f75c0d79940820b79c Branches: master
Link: http://git.php.net/?p=web/bugs.git;a=commitdiff;h=257c114b05462d5d65ee6efffabd28ad59889b69 Log: Fix #78558: Information Exposure Through an Error Message We certainly should not display these details to anybody. It would make sense to show that during development, and maybe to developers. Bugs: https://bugs.php.net/78558 Changed paths: M include/query.php Diff: diff --git a/include/query.php b/include/query.php index 507c8e2..2c56dc3 100644 --- a/include/query.php +++ b/include/query.php @@ -275,7 +275,7 @@ if (isset($_GET['cmd']) && $_GET['cmd'] == 'display') $rows = count($result); $total_rows = $dbh->prepare('SELECT FOUND_ROWS()')->execute()->fetch(\PDO::FETCH_NUM)[0]; } catch (Exception $e) { - $errors[] = 'Invalid query: ' . $e->getMessage(); + $errors[] = 'Invalid query' /*. $e->getMessage() */; } if (defined('MAX_BUGS_RETURN') && $total_rows > $rows) { $warnings[] = 'The search was too general, only ' . MAX_BUGS_RETURN . ' bugs will be returned'; -- PHP Webmaster List Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
