potential format string exploit

git-svn-id: http://svn.freeswitch.org/svn/freeswitch/trunk@4253 d0543943-73ff-0310-b7d9-9358b9ac24b2

potential format string exploit
git-svn-id: http://svn.freeswitch.org/svn/freeswitch/trunk@4253 d0543943-73ff-0310-b7d9-9358b9ac24b2
711c59a6 · Michael Jerris · 2cf3ad1c · 711c59a6
--- a/src/mod/languages/mod_spidermonkey/mod_spidermonkey.c
+++ b/src/mod/languages/mod_spidermonkey/mod_spidermonkey.c
@@ -225,7 +225,7 @@ static JSBool event_add_body(JSContext *cx, JSObject *obj, uintN argc, jsval *ar

 	if (argc > 0) {
 		char *body = JS_GetStringBytes(JS_ValueToString(cx, argv[0]));
-		switch_event_add_body(eo->event, body);
+		switch_event_add_body(eo->event, "%s", body);
 		*rval = BOOLEAN_TO_JSVAL( JS_TRUE );
 		return JS_TRUE;
 	}