From 8ce1c80cc72c23d818d6540dfbf8b3501eb6ebb3 Mon Sep 17 00:00:00 2001
From: Dries Buytaert <dries@buytaert.net>
Date: Mon, 28 Jun 2010 20:27:34 +0000
Subject: - Patch #829484 by Berdir, Dave Reid, dereine: uncaught PDO Exception
 - XSS.

---
 includes/errors.inc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'includes/errors.inc')

diff --git a/includes/errors.inc b/includes/errors.inc
index 96bf8fdb2..990f60cfd 100644
--- a/includes/errors.inc
+++ b/includes/errors.inc
@@ -135,7 +135,7 @@ function _drupal_decode_exception($exception) {
  *   An error message.
  */
 function _drupal_render_exception_safe($exception) {
-  return strtr('%type: %message in %function (line %line of %file).', _drupal_decode_exception($exception));
+  return check_plain(strtr('%type: %message in %function (line %line of %file).', _drupal_decode_exception($exception)));
 }
 
 /**
-- 
cgit v1.2.3