507c313: If the query fails because it contains invalid operators, phpmongodb will attempt to call a function on a non-object and crashes.
bf46a14: phpmongodb puts the raw representation of the MongoCursor directly in the HTML document. This can result in HTML injection if the Mongo documents contain HTML content. This patch fixes that by encoding the stringified representation of the MongoCursor.
507c313: If the query fails because it contains invalid operators, phpmongodb will attempt to call a function on a non-object and crashes.
bf46a14: phpmongodb puts the raw representation of the MongoCursor directly in the HTML document. This can result in HTML injection if the Mongo documents contain HTML content. This patch fixes that by encoding the stringified representation of the MongoCursor.