[xdebug-dev] Bug 0000305: xdebug exception handler doesn't properly handle special chars

From: <noreply[@]lists.xdebug.org>
Date: Tue, 28 Aug 2007 14:41:33 +0200

The following NEW bug has been ADDED.
======================================================================
http://bugs.xdebug.org/bug_view_page.php?bug_id=0000305
======================================================================
Reporter: hoffie
Handler:
======================================================================
Project: Xdebug
Bug ID: 305
Category: Usage problems
Reproducibility: always
Severity: minor
Priority: normal
Status: new
Operating System: Linux 2.6
PHP Version: 5.2-dev
Xdebug Version: 2.0.0
======================================================================
Date Submitted: 2007-08-28 14:41 CEST
Last Modified: 2007-08-28 14:41 CEST
======================================================================
Summary: xdebug exception handler doesn't properly handle special chars
Description:
While PHP's default exception handler escapes special chars like <, > and "
correctly, xdebug's exception handler doesn't.
Basically this might be classified as XSS, but as xdebug is intended for
debugging only I don't think it is that critical (it should still be
fixed, of course).
======================================================================

Bug History
Date Modified Username Field Change
======================================================================
2007-08-28 14:41hoffie New Bug
2007-08-28 14:41hoffie Bug Monitored: hoffie
======================================================================
Received on Tue Aug 28 2007 - 14:41:35 BST

This archive was generated by hypermail 2.2.0 : Sun Jun 24 2018 - 04:00:03 BST