Koha/koha-tmpl/opac-tmpl/bootstrap at fb51a4bb0f3ac8b42b53579fe3d6d73d0b3438cd - Koha-community/Koha - Koha: The world's first free and open source library system

History

Chris Cormack fb51a4bb0f Bug 14416: Stored XSS vulnerability opac-addbybiblionumber.pl is also vulnerable because it doesn't escape list names. To test 1/ Create a malicious list name 2/ Try to add a biblio to the lists 3/ Notice js is excuted 4/ Apply patch 5/ Test again Signed-off-by: Jonathan Druart <jonathan.druart@koha-community.org> Signed-off-by: Katrin Fischer <katrin.fischer@bsz-bw.de> Signed-off-by: Tomas Cohen Arazi <tomascohen@unc.edu.ar>		2015-06-22 11:00:09 -03:00
..
css	Bug 11574 - Clean up Printing Lists	2015-05-05 15:41:27 -03:00
en	Bug 14416: Stored XSS vulnerability	2015-06-22 11:00:09 -03:00
images	Bug 10309 - New OPAC theme based on Bootstrap	2013-10-14 23:13:05 +00:00
itemtypeimg	Bug 10309 - New OPAC theme based on Bootstrap	2013-10-14 23:13:05 +00:00
js	Bug 9580 Cover images from Coce, a remote image URL cache	2015-04-01 09:31:42 -03:00
less	Bug 11574 - Clean up Printing Lists	2015-05-05 15:41:27 -03:00
lib	Bug 13307: Fix jquery.deseriable.min.js	2015-04-13 13:48:55 -03:00