Koha/koha-tmpl/intranet-tmpl/prog/en at 1d0d5f1398687ead3a17cd40f74f879e8ddf9a9d - Koha-community/Koha - Koha: The world's first free and open source library system

History

Jonathan Druart 1d0d5f1398 Bug 17365: Fix XSS in moremember.pl and memberentry.pl There are certainly hundred of places where they are not escaped... Test plan: Create a patron with "Arun <script>alert('code injection');</script>" in some of the fields. Signed-off-by: Chris Cormack <chris@bigballofwax.co.nz> Signed-off-by: Katrin Fischer <katrin.fischer@bsz-bw.de> Signed-off-by: Brendan Gallagher <brendan@bywatersolutions.com>		2016-10-11 16:19:56 +00:00
..
data	Bug 16608 - Missing entity nbsp in some XML files	2016-06-10 17:40:55 +00:00
includes	Bug 17365: Fix XSS in moremember.pl and memberentry.pl	2016-10-11 16:19:56 +00:00
js	Bug 16795 - Patron categories: Accept integers only for enrolment period and age limits	2016-07-08 13:15:31 +00:00
modules	Bug 17365: Fix XSS in moremember.pl and memberentry.pl	2016-10-11 16:19:56 +00:00
xslt	Bug 13921 - XSLT Literary Formats Not Showing	2016-09-02 14:10:48 +00:00
columns.def	Bug 15373: More changes of Zip to ZIP on intranet	2015-12-30 16:30:35 +00:00