From 4c8aa393cbda9d316d0b8851be44bcb1be4c2cc1 Mon Sep 17 00:00:00 2001
From: Steve Boyd <emteknetnz@gmail.com>
Date: Wed, 3 Mar 2021 17:59:42 +1300
Subject: [PATCH] [CVE-2021-27938] Prevent echoing request variable

---
 src/Tasks/CreateQueuedJobTask.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/Tasks/CreateQueuedJobTask.php b/src/Tasks/CreateQueuedJobTask.php
index acd6e8b8..4f67de7a 100644
--- a/src/Tasks/CreateQueuedJobTask.php
+++ b/src/Tasks/CreateQueuedJobTask.php
@@ -54,7 +54,7 @@ public function run($request)
             $now = time();
             if ($start >= $now) {
                 $friendlyStart = date('Y-m-d H:i:s', $start);
-                echo "Job ".$request['name']. " queued to start at: <b>".$friendlyStart."</b>";
+                echo 'Job queued to start at: <b>' . $friendlyStart . '</b>';
                 singleton('Symbiote\\QueuedJobs\\Services\\QueuedJobService')->queueJob($job, $start);
             } else {
                 echo "'start' parameter must be a date/time in the future, parseable with strtotime";