Escape DN value before using it in a search

ltb-project · Oct 29, 2024 · 190537a · 190537a
1 parent cebbde4
commit 190537a
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/src/Ltb/Ldap.php b/src/Ltb/Ldap.php
@@ -493,7 +493,8 @@ function get_first_value($ldap_base, $ldap_scope, $ldap_filter, $attribute): str
     public function matchDn($dn, $dnAttribute, $filter, $base, $scope): bool {
 
         # Build filter
-        $search_filter = '(&' . $filter . '(' . $dnAttribute . '=' . $dn .'))';
+        $dn_escape = ldap_escape($dn, "", LDAP_ESCAPE_FILTER);
+        $search_filter = '(&' . $filter . '(' . $dnAttribute . '=' . $dn_escape .'))';
 
         # Search with scope
         $search = $this->search_with_scope($scope, $base, $search_filter, ['1.1']);