Koha-community/Koha
13
7
Fork 0
Code Issues Releases Wiki Activity
Koha/koha-tmpl/opac-tmpl/bootstrap
History
Jonathan Druart 65918b146c Bug 16958: Fix XSS in opac-imageviewer.pl 
Test plan:
Trigger
/opac-imageviewer.pl?biblionumber=14&imagenumber=7"><sCrIpT>alert(42)<%2fsCrIpT>

=> Without this patch you will see the JS alert
=> With this patch applied you won't see it

Signed-off-by: Chris Cormack <chris@bigballofwax.co.nz>
Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl>

Signed-off-by: Kyle M Hall <kyle@bywatersolutions.com>
2016-07-22 17:12:02 +00:00
..
css Bug 2735: CSS changes 2016-07-15 14:05:59 +00:00
en Bug 16958: Fix XSS in opac-imageviewer.pl 2016-07-22 17:12:02 +00:00
images
itemtypeimg
js Bug 16516: Define the showListsUpdate JS function at the OPAC 2016-05-23 17:40:51 +00:00
less Bug 2735: Fix authority search pagination at the OPAC 2016-07-15 14:05:59 +00:00
lib Bug 13696: Add support for Font Awesome icons in Koha 2015-10-27 09:57:23 -03:00