Koha-community/Koha
13
7
Fork 0
Code Issues Releases Wiki Activity
Koha/koha-tmpl/opac-tmpl/bootstrap/en/modules
History
Chris Cormack 90f3b84def Bug 11322: fix XSS bug in purchase suggestions - OPAC 
1/ Add a suggestion in the opac, with lots of html
2/ View that suggestion in the OPAC, note the html is rendering
3/ Apply the patch
4/ Test again, in prog and bootstrap, no more rendered html

Signed-off-by: David Cook <dcook@prosentient.com.au>

Works as described.

Signed-off-by: Katrin Fischer <Katrin.Fischer.83@web.de>
Signed-off-by: Galen Charlton <gmc@esilibrary.com>
2013-12-03 00:20:12 +00:00
..
errors
sco bug 10016: munge history in SCO to discourage resubmitting user login 2013-10-21 18:05:28 +00:00
search
svc Bug 10309: (follow-up) Update for Bug 10856, improve shelf browser 2013-10-14 23:13:47 +00:00
text
ilsdi.tt
maintenance.tt
opac-account.tt
opac-addbybiblionumber.tt
opac-advsearch.tt Bug 10309: (follow-up) Add changes from Bug 8712, "and" labels in advanced search 2013-10-14 23:14:02 +00:00
opac-alert-subscribe.tt
opac-auth-detail.tt
opac-auth-MARCdetail.tt
opac-auth.tt
opac-authorities-home.tt
opac-authoritiessearchresultlist.tt
opac-basket.tt
opac-browser.tt
opac-course-details.tt Bug 10309: (follow-up) Markup fix from Bug 10566 follow-up 2013-10-14 23:14:15 +00:00
opac-course-reserves.tt
opac-detail.tt Bug 11304: fix display of detail page holdings tab in translated Bootstrap theme 2013-11-27 16:52:02 +00:00
opac-downloadcart.tt
opac-downloadshelf.tt
opac-full-serial-issues.tt
opac-imageviewer.tt
opac-ISBDdetail.tt
opac-main.tt
opac-MARCdetail.tt
opac-memberentry-update-submitted.tt
opac-memberentry.tt
opac-messaging.tt
opac-mymessages.tt
opac-opensearch.tt Bug 11308: fix RSS page in bootstrap theme 2013-11-27 15:50:19 +00:00
opac-overdrive-search.tt
opac-passwd.tt
opac-privacy.tt
opac-readingrecord.tt
opac-registration-confirmation.tt
opac-registration-email-sent.tt
opac-registration-invalid.tt
opac-reserve.tt Bug 11142 - Update Bootstrap theme's place hold form to match the new version in prog 2013-10-31 16:58:51 +00:00
opac-results-grouped.tt
opac-results.tt
opac-review.tt
opac-search-history.tt
opac-sendbasket.tt
opac-sendbasketform.tt
opac-sendshelf.tt Bug 8368: (follow-up) port change to the Bootstrap OPAC; restore ISBN display 2013-10-18 06:47:39 +00:00
opac-sendshelfform.tt
opac-serial-issues.tt
opac-shelves.tt
opac-showmarc.tt
opac-showreviews-rss.tt
opac-showreviews.tt
opac-suggestions.tt Bug 11322: fix XSS bug in purchase suggestions - OPAC 2013-12-03 00:20:12 +00:00
opac-tags.tt
opac-tags_subject.tt
opac-topissues.tt
opac-user.tt