Upstream/Plan
1
0
Fork 0
mirror of https://github.com/plan-player-analytics/Plan.git synced 2024-12-27 19:47:49 +01:00
Code Issues Projects Releases Wiki Activity

Prevented a future accidental XSS vulnerability in Graph type selection

Browse Source 
The type parameter was passed to an exception that is currently turned into
json, but in the future the way this exception is handled could have changed.
This commit is contained in:
Risto Lahtela 2021-01-24 11:05:04 +02:00
parent 8544e5a904
commit a6c286b0f2
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
Plan/common/src/main/java/com/djrapitops/plan/delivery/webserver/resolver/json/GraphsJSONResolver.java
View File

@ -109,7 +109,7 @@ public class GraphsJSONResolver implements Resolver {
case "serverPie":
return DataID.GRAPH_SERVER_PIE;
default:
throw new BadRequestException("unknown 'type' parameter: " + type);
throw new BadRequestException("unknown 'type' parameter.");
}
}