Koha/koha-tmpl/intranet-tmpl/prog/en at 6b3449627fe53851b92428e57bb12d6c6492e2b9 - Koha-community/Koha - Koha: The world's first free and open source library system

History

Amit Gupta 6b3449627f Bug 19105 - XSS Stored in holidays.pl To Test 1. Hit the page /cgi-bin/koha/tools/holidays.pl 2. Select the date 3. Add a text in the field Title and Description that contains js 4. Save the page. 5. Notice js is execute 6. Apply patch and reload, the js is escaped Fixed for all holidays Signed-off-by: Katrin Fischer <katrin.fischer.83@web.de> Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl> Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org>		2017-08-29 12:00:37 -03:00
..
data	Bug 17288: (follow-up) Fix marc21_field_007.xml	2017-08-25 10:59:03 -03:00
includes	Bug 18447 - Datepicker only shows -10/+10 years	2017-08-25 11:38:46 -03:00
js
modules	Bug 19105 - XSS Stored in holidays.pl	2017-08-29 12:00:37 -03:00
xslt	Bug 15140 (QA Followup) lowercase the search index	2017-07-26 14:42:45 -03:00
columns.def