Escape error message

Author: nicolaasuni

CHANGELOG.TXT

@@ -1,5 +1,5 @@
 6.8.0 (2024-12-23)
-	- 
+	- Escape error message.
 
 6.7.8 (2024-12-13)
 	- Improve SVG detection by checking for (mandatory) namespace.

tcpdf.php

@@ -3007,6 +3007,7 @@ public function setAllowLocalFiles($allowLocalFiles) {
 	public function Error($msg) {
 		// unset all class variables
 		$this->_destroy(true);
+		$msg = htmlspecialchars($msg, ENT_QUOTES, 'UTF-8');
 		if (defined('K_TCPDF_THROW_EXCEPTION_ERROR') AND !K_TCPDF_THROW_EXCEPTION_ERROR) {
 			die('<strong>TCPDF ERROR: </strong>'.$msg);
 		} else {