Bug 17026: Fix XSS in serials/checkexpiration.pl

Test plan: Hit: /serials/checkexpiration.pl?title="><script>alert("XSS")</script>&date=12/02/2002 /serials/checkexpiration.pl?issn="><script>alert("XSS")</script>&date=12/02/2002 => Without this patch you will see the alert => With this patch, no more alert Signed-off-by: Chris Cormack <chris@bigballofwax.co.nz> Signed-off-by: Katrin Fischer <katrin.fischer.83@web.de> Signed-off-by: Brendan Gallagher <brendan@bywatersolutions.com>
2016-08-02 14:51:49 +01:00 · 2016-08-02 14:51:49 +01:00 · 9d00353a92
commit 9d00353a92
parent 66f81fc210
1 changed files with 4 additions and 4 deletions
--- a/koha-tmpl/intranet-tmpl/prog/en/modules/serials/checkexpiration.tt
+++ b/koha-tmpl/intranet-tmpl/prog/en/modules/serials/checkexpiration.tt
@ -49,10 +49,10 @@
    
         <ol>
        <li><label for="title">Title:</label>
-        <input id="title" type="text" name="title" size="15" value="[% title %]" /></li>
+        <input id="title" type="text" name="title" size="15" value="[% title | html %]" /></li>

        <li><label for="issn">ISSN:</label>
-        <input id="issn" type="text" name="issn" size="15" value="[% issn %]" /></li>
+        <input id="issn" type="text" name="issn" size="15" value="[% issn | html %]" /></li>
        [% IF (branches_loop.size) %]
        <li><label for="branch">Library:</label>
        <select id="branch" name="branch">
@ -84,11 +84,11 @@
 <p>
    <b>[% numsubscription %]</b> subscription(s)
        [% IF ( title ) %]
-        with title matching <span class="title">[% title %]</class>
+        with title matching <span class="title">[% title | html %]</class>
        [% IF ( issn ) %]and [% END %]
    [% END %]
    [% IF ( issn ) %]
-        with ISSN matching <b>[% issn %]</b>
+        with ISSN matching <b>[% issn | html %]</b>
    [% END %]
        will expire before <b>[% date | $KohaDates %]</b>
 </p>