Koha-community/Koha
13
7
Fork 0
Code Issues Releases Wiki Activity
Koha/koha-tmpl/intranet-tmpl
History
Jonathan Druart b543fa74fe Bug 17038: Fix XSS in catalogue/search.pl 
Test plan:
Search for something like:
  \";alert(1)//135

=> Without this patch you will see the alert
=> With this patch, no more alert

Note that this fix the parameters idx, q and op

Signed-off-by: Chris Cormack <chrisc@catalyst.net.nz>

Signed-off-by: Katrin Fischer <katrin.fischer.83@web.de>

Signed-off-by: Kyle M Hall <kyle@bywatersolutions.com>
2016-08-10 13:20:51 +00:00
..
js Bug 16456: Add Font Awesome icons to some buttons in Tools module, section Patrons and circulation 2016-06-17 15:40:24 +00:00
lib Bug 16400: Restore the previous stack order behavior 2016-06-24 13:34:44 +00:00
prog Bug 17038: Fix XSS in catalogue/search.pl 2016-08-10 13:20:51 +00:00