Koha/koha-tmpl/intranet-tmpl at ec86950780e908f5b2a5d53e21cffede6d570b08 - Koha-community/Koha - Koha: The world's first free and open source library system

History

Amit Gupta ec86950780 Bug 19086: Fix Stored XSS in subscription-add.pl To Test 1. Hit the page /cgi-bin/koha/serials/subscription-add.pl 2. Add a text in the field Public note and Nonpublic note that contains js (Internalnotes, notes) 2. Save the page. 3. Notice js is execute 4. Apply patch and reload, the js is escaped Signed-off-by: Katrin Fischer <katrin.fischer.83@web.de> Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl> Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org>		2017-09-29 12:20:45 -03:00
..
js
lib	Bug 18810: Update Font Awesome to 4.7.0	2017-09-19 09:22:45 -03:00
prog	Bug 19086: Fix Stored XSS in subscription-add.pl	2017-09-29 12:20:45 -03:00