Kyle M Hall dc03bca76c Bug 15111 - Koha is vulnerable to Cross-Frame Scripting (XFS) attacks ... Web pages that can be embedded in frames are vulnerable to cross-frame scripting attacks. Cross-frame scripting is a type of phishing attack that involves instructions to an unsuspecting user to follow a specific link to update confidential information in an online application. Because the link leads to a legitimate page from the online application that is embedded in a frame hosted by the attackers' server, the attackers can capture all the information that the user enters. https://www.owasp.org/index.php/Clickjacking_Defense_Cheat_Sheet Signed-off-by: Chris Cormack <chrisc@catalyst.net.nz> Signed-off-by: Katrin Fischer <katrin.fischer.83@web.de> Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org> Signed-off-by: Chris Cormack <chrisc@catalyst.net.nz> Signed-off-by: Kyle M Hall <kyle@bywatersolutions.com>		2016-03-14 16:30:08 +00:00
..
css	Bug 16048 [Follow-up] Making notices actions buttons	2016-03-11 23:01:39 +00:00
data
includes	Bug 15111 - Koha is vulnerable to Cross-Frame Scripting (XFS) attacks	2016-03-14 16:30:08 +00:00
js	Bug 15206 - Make CalculateAge a reusable function	2016-03-12 23:41:40 +00:00
lib/yui	Bug 13139 - Move treeview jQuery plugin outside of language-specific directory	2014-10-27 12:36:53 -03:00
modules	Bug 16045 - Use Font Awesome icons in OAI sets administration	2016-03-12 23:44:52 +00:00
xslt	Bug 15162: Remove specific test in UNIMARCslim2*.xsl	2016-01-27 06:00:35 +00:00
columns.def	Bug 15373: More changes of Zip to ZIP on intranet	2015-12-30 16:30:35 +00:00