Ec 328 (#51)

* Ec-329: Reduce timestamp to avoid replay attack * EC-327: SQL injection in M2 extension (#47) * EC-326: Cross site scripting in Magento Extn (#48) * sql injection attack changes added * sql injection prevention changes * security fixes for EC-329,327,326 * sql injection security fix * internal exception messages * security bug fix * security fix for EC-328 * removed comments --------- Co-authored-by: Manish <[email protected]> Co-authored-by: manish-ometria <[email protected]>
Ometria · Oct 4, 2023 · fe3c730 · fe3c730
1 parent b8c591d
commit fe3c730
Showing 1 changed file with 2 additions and 3 deletions.
diff --git a/app/code/Ometria/Api/Plugin/BaseController.php b/app/code/Ometria/Api/Plugin/BaseController.php
@@ -44,9 +44,8 @@ public function aroundDispatch($subject, $proceed, $request)
             $result = $proceed($request);
         } catch (\Exception $e) {
             $result = $this->resultJsonFactory->create();
-           // $result->setData(['error' => htmlspecialchars($e->getMessage())]);   
-           $result->setData(['error' => get_class($e)." code ".$e->getCode() .
-                   " in " . basename($e->getFile()) . " line " . $e->getLine() ]); 
+            $result->setData(['error' => get_class($e)." code ".$e->getCode() .
+            " in " . basename($e->getFile()) . " line " . $e->getLine() ]);
         }
 
         return $result;