1111use Psr \Http \Message \ServerRequestInterface ;
1212use Psr \Http \Server \MiddlewareInterface ;
1313use Psr \Http \Server \RequestHandlerInterface ;
14- use RuntimeException ;
1514
1615use function __ ;
1716use function count ;
@@ -27,23 +26,24 @@ public function __construct(private readonly Template $template, private readonl
2726
2827 public function process (ServerRequestInterface $ requestRequestHandlerInterface $ handlerResponseInterface
2928 {
30- try {
31- if (isset ($ _REQUEST 'GLOBALS ' ]) || isset ($ _FILES 'GLOBALS ' ])) {
32- throw new RuntimeException (__ ('GLOBALS overwrite attempt ' ));
33- }
34-
35- /**
36- * protect against possible exploits - there is no need to have so many variables
37- */
38- if (count ($ _REQUEST 1000 ) {
39- throw new RuntimeException (__ ('possible exploit ' ));
40- }
41- } catch (RuntimeException $ exception
29+ if (isset ($ _REQUEST 'GLOBALS ' ]) || isset ($ _FILES 'GLOBALS ' ])) {
4230 $ response$ this responseFactory ->createResponse (StatusCodeInterface::STATUS_INTERNAL_SERVER_ERROR );
4331
4432 return $ responsewrite ($ this template ->render ('error/generic ' , [
4533 'lang ' => $ GLOBALS 'lang ' ] ?? 'en ' ,
46- 'error_message ' => $ exceptiongetMessage (),
34+ 'error_message ' => __ ('GLOBALS overwrite attempt ' ),
35+ ]));
36+ }
37+
38+ /**
39+ * protect against possible exploits - there is no need to have so many variables
40+ */
41+ if (count ($ _REQUEST 1000 ) {
42+ $ response$ this responseFactory ->createResponse (StatusCodeInterface::STATUS_INTERNAL_SERVER_ERROR );
43+
44+ return $ responsewrite ($ this template ->render ('error/generic ' , [
45+ 'lang ' => $ GLOBALS 'lang ' ] ?? 'en ' ,
46+ 'error_message ' => __ ('possible exploit ' ),
4747 ]));
4848 }
4949
0 commit comments