This repository was archived by the owner on Oct 6, 2021. It is now read-only.
This repository was archived by the owner on Oct 6, 2021. It is now read-only.
CSRF Array to String Error #208
Description
- Check this box if this is a security vulnerability.
Summary
CSRF token is to be inserted into <body> instead an error from Twig is displayed.
data-ajaxtoken="<br />
<b>Notice</b>: Array to string conversion in <b>/home/www/csprng/vendor/twig/twig/lib/Twig/Environment.php(467) : eval()'d code</b> on line <b>57</b><br />Array"
You can fix it by using [0] but this isn't a good fix.
{% if ajax_csrf_token %} data-ajaxtoken="{{ ajax_csrf_token[0] }}"{% endif %}
You can see the error here: https://bridge.cspr.ng/board