Skip to content
Snippets Groups Projects
Commit 6d215c0b authored by Jaime Pérez's avatar Jaime Pérez
Browse files

Use AttributeValue serializable objects instead of dumping manually the XML contents.

This way, we avoid completely any possible XXE attack, and simplify the code as we don't need to deal directly with the DOM. The entire AttributeValue will be saved to the backend as XML, and then recovered back when unserializing.
parent f261dfc1
No related branches found
No related tags found
No related merge requests found
Loading
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment