| Topic: | print_object in datalib.php should have some validation to make sure it's not exploited |
| Severity: | Minor |
| Versions affected: | 2.1 to 2.1.2+, 2.0 to 2.0.5+ (1.9.x not affected) |
| Reported by: | Rajesh Taneja |
| Issue no.: | MDL-28947 |
| Changes (master): | http://git.moodle.org/gw?p=moodle.git;a=commit;h=187672608ec96659e07f2461b3b83634debd16cb |
| Workaround: | Avoid leaving debugging code behind |
Description:
Developers debugging a system may output object states, and the filtering of this output has now been strengthened.