Koha-community/Koha
13
7
Fork 0
Code Issues Releases Wiki Activity
Koha/koha-tmpl/opac-tmpl/bootstrap
History
Chris da6ee1c469 Bug 13510 : Fixing the third XSS issue 
To test

1/ Make sure you have some items in your database, that have values in items.issue
If nessecary do something like

UPDATE items SET issues = 10 WHERE itemnumber=somenumber

2/ Hit a url like http://localhost:8080/cgi-bin/koha/opac-topissues.pl?do_it=1&timeLimit=3%3Cscript%3Eprompt%28924513%29%3C/script%3E

3/ Notice you will get a prompt
4/ Apply patch
5/ Test again

Signed-off-by: Katrin Fischer <katrin.fischer@bsz-bw.de>
Signed-off-by: Martin Renvoize <martin.renvoize@ptfs-europe.com>
Signed-off-by: Tomas Cohen Arazi <tomascohen@gmail.com>
2015-01-22 16:35:58 -03:00
..
css Bug 10632 [Follow-up] Enable datatables for courses and course details in the OPAC 2014-11-11 16:07:33 -03:00
en Bug 13510 : Fixing the third XSS issue 2015-01-22 16:35:58 -03:00
images Bug 10309 - New OPAC theme based on Bootstrap 2013-10-14 23:13:05 +00:00
itemtypeimg Bug 10309 - New OPAC theme based on Bootstrap 2013-10-14 23:13:05 +00:00
js Bug 13341 - Hard-coded "Preview" text in OPAC openlibrary.js 2014-12-28 20:44:26 -03:00
less Bug 9214 - Show damaged status in the OPAC for items which are not for loan 2014-11-11 15:13:03 -03:00
lib Bug 11743 - Remove unused DataTables plugin from OPAC theme directories 2014-02-18 21:27:57 +00:00