Koha-community/Koha
13
7
Fork 0
Code Issues Releases Wiki Activity
Koha/koha-tmpl/opac-tmpl/bootstrap/en/includes
History
Jonathan Druart f94162564a Bug 18726: Fix XSS at the OPAC - biblionumber 
The biblionumber parameter is sent by the user, we must escape all of
them to avoid XSS.

Fixes: Cross-site scripting OPAC pages

Signed-off-by: Amit Gupta <amit.gupta@informaticsglobal.com>

Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl>

Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org>
2017-08-29 12:00:37 -03:00
..
search
authorities-search-results.inc Bug 16677 - Use abbr for authorities linked headings 2016-07-08 14:28:07 +00:00
av-build-dropbox.inc Bug 18682 - Translatability: Get rid of [%% in translation for 2 files av-build-dropbox.inc 2017-06-05 16:35:56 -03:00
bodytag.inc Revert bug 13618 - "Prevent XSS in the Staff Client and the OPAC" due to performance issues 2016-02-11 19:39:53 +00:00
calendar.inc Bug 18447 - QA Followup - fix opac usage 2017-08-25 11:38:46 -03:00
datatables.inc
date-format.inc
doc-head-close.inc Bug 17486: Remove Mozilla Persona 2017-01-13 12:32:19 +00:00
doc-head-open.inc
greybox.inc
html_helpers.inc Bug 15758: Koha::Libraries - Remove GetBranchesLoop 2016-09-08 14:36:02 +00:00
item-status-schema-org.inc
item-status.inc Bug 18276: FIX status display for course reserves 2017-07-10 12:22:55 -03:00
masthead-langmenu.inc
masthead-sco.inc Revert bug 13618 - "Prevent XSS in the Staff Client and the OPAC" due to performance issues 2016-02-11 19:39:53 +00:00
masthead.inc Bug 17993 - Do not use modal authentication with CAS - lists 2017-05-08 09:02:17 -04:00
navigation.inc Revert bug 13618 - "Prevent XSS in the Staff Client and the OPAC" due to performance issues 2016-02-11 19:39:53 +00:00
opac-authorities.inc Revert bug 13618 - "Prevent XSS in the Staff Client and the OPAC" due to performance issues 2016-02-11 19:39:53 +00:00
opac-bottom.inc Bug 18726: Fix XSS at the OPAC - biblionumber 2017-08-29 12:00:37 -03:00
opac-detail-sidebar.inc Bug 18726: Fix XSS at the OPAC - biblionumber 2017-08-29 12:00:37 -03:00
opac-facets.inc Bug 17169 - Use CCODE descriptions instead of codes 2017-03-22 19:24:23 +00:00
opac-note.inc Bug 17386: Simplify code 2016-10-10 14:08:20 +00:00
opac-topissues.inc Bug 17537: Fix valid-templates.t for some include files 2016-11-04 11:03:48 +00:00
openlibrary-readapi.inc bug_6624: Added Open Library Search and Read API calls to opac-results.tt and opac-detail.tt Conditional to OpenLibrarySearch syspref 2016-02-23 22:04:15 +00:00
overdrive-checkout.inc bug_16034 Add overdrive info to the users page in the public interface 2017-02-21 19:58:21 +00:00
page-numbers.inc Revert bug 13618 - "Prevent XSS in the Staff Client and the OPAC" due to performance issues 2016-02-11 19:39:53 +00:00
patron-title.inc
resort_form.inc
shelfbrowser.inc Bug 16315 - OPAC Shelfbrowser doesn't display the full title 2016-05-05 18:28:16 +00:00
slip-print.inc Bug 18405: Self checkout: Fix broken silent printing 2017-05-08 09:01:41 -04:00
subtypes_unimarc.inc
usermenu.inc Bug 12528: Bug 9254: Followup - Rename pref to EnhancedMessagingPreferencesOPAC 2016-04-29 17:54:10 +00:00