projects / koha.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3dc9930) | patch
Bug 7316 - Missing escaping in search results
authorFrère Sébastien Marie <semarie-koha@latrappe.fr>
Sun, 4 Dec 2011 17:14:09 +0000 (18:14 +0100)
committerPaul Poulain <paul.poulain@biblibre.com>
Fri, 9 Dec 2011 15:01:23 +0000 (16:01 +0100)
commit48173560ba583da4fe6d3f2ba2f071573b4b927e
tree3d63ee9d43ae996de387078a00e21c3f0585fb82tree | snapshot
parent3dc99300014ecb032bb4433fbd782f649ebe999dcommit | diff
Bug 7316 - Missing escaping in search results

Two parameters are now escaped in title (html element):
 - query_desc
 - limit_desc

This is a security correction against XSS.

Signed-off-by: Owen Leonard <oleonard@myacpl.org>
Signed-off-by: Paul Poulain <paul.poulain@biblibre.com>
koha-tmpl/intranet-tmpl/prog/en/modules/catalogue/results.tt diff | blob | history
koha-tmpl/opac-tmpl/prog/en/modules/opac-results-grouped.tt diff | blob | history
koha-tmpl/opac-tmpl/prog/en/modules/opac-results.tt diff | blob | history
Main Koha release repository