Koha/koha-tmpl/intranet-tmpl at c176b8ceefc8a4b964b8671c4d3198af053b59c8 - Koha-community/Koha - Koha: The world's first free and open source library system

History

Chris Cormack c176b8ceef Bug 19086: Fix Stored XSS in members/member.pl To test 1/ hit /cgi-bin/koha/members/member.pl?&searchmember=<script>alert('XSS Payload')</script> 2/ Notice js is executed 3/ Apply patch, reload 4/ js is now escaped Signed-off-by: Amit Gupta <amit.gupta@informaticsglobal.com> Signed-off-by: Katrin Fischer <katrin.fischer.83@web.de> Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl> Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org>		2017-09-29 12:20:44 -03:00
..
js
lib	Bug 18810: Update Font Awesome to 4.7.0	2017-09-19 09:22:45 -03:00
prog	Bug 19086: Fix Stored XSS in members/member.pl	2017-09-29 12:20:44 -03:00