Koha/koha-tmpl at d2d365ca830345b9a519158f6d735d2abd125380 - Koha-community/Koha - Koha: The world's first free and open source library system

History

Chris Cormack d2d365ca83 Bug 11341: fix XSS bug in opac-search.pl (facets) This patch fixes the prog theme; the bootstrap theme already does the necessary filtering. To test 1/ Craft a url like cgi-bin/koha/opac-search.pl?idx=kw&q=fish&offset=20" onmouseover%3dprompt(994000) bad%3d" (the search must return enough results to have a show more link in the facets) 2/ Check the source, or mouseover the Show more links in the facets Notice the code is executable 3/ Apply patch - notice it is no longer executable Signed-off-by: Tomas Cohen Arazi <tomascohen@gmail.com> Signed-off-by: Brendan Gallagher <brendan@bywatersolutions.com> Signed-off-by: Galen Charlton <gmc@esilibrary.com>		2013-12-04 21:59:18 +00:00
..
intranet-tmpl	Bug 5031: (follow-up) correct tabs	2013-12-03 17:02:23 +00:00
opac-tmpl	Bug 11341: fix XSS bug in opac-search.pl (facets)	2013-12-04 21:59:18 +00:00
favicon.ico
index.html	/koha-tmpl/ is now the documentroot for opac and intranet pages (remember koha-html is deprecated and should be removed very soon)	2003-03-18 14:17:56 +00:00
intranet.html
opac.html
templates.readme