Koha/koha-tmpl/intranet-tmpl/prog/en at 3601c6fb1b19ef52cf441b473b34d98a17bc887a - Koha-community/Koha - Koha: The world's first free and open source library system

History

Chris 3601c6fb1b Bug 14423: XSS bug in lateorders 1/ hit a url like http://localhost:8081/cgi-bin/koha/acqui/lateorders.pl?delay=<script>alert('oh noes')</script>&estimateddeliverydatefrom 2/ Not you get an alert box 3/ Apply patch notice it is fixed 4/ Test functionality still works Signed-off-by: Jonathan Druart <jonathan.druart@koha-community.org> Signed-off-by: Katrin Fischer <katrin.fischer.83@web.de> Signed-off-by: Tomas Cohen Arazi <tomascohen@theke.io>		2015-06-23 10:11:57 -03:00
..
css	Bug 10172: Hide some uneeded stuffs on printing a record	2015-06-22 11:10:06 -03:00
data	Bug 11695 - Fixed typo in marc21_field_008.xml	2014-03-11 14:21:23 +00:00
includes	Bug 14423: XSS in authorities-home	2015-06-23 10:11:49 -03:00
js	Bug 14327: Fix js error "TypeError: events is null" in additem.js	2015-06-07 18:40:12 -03:00
lib/yui	Bug 13139 - Move treeview jQuery plugin outside of language-specific directory	2014-10-27 12:36:53 -03:00
modules	Bug 14423: XSS bug in lateorders	2015-06-23 10:11:57 -03:00
xslt	Bug 14094: DDC - Add separators for repeated $a subfields (MARC21)	2015-06-22 11:48:18 -03:00
columns.def	Bug 14130: Update columns.def	2015-05-22 17:02:21 -03:00