From 8fc16ed317a09a1d750f0e9211db2ae6b7a68d73 Mon Sep 17 00:00:00 2001 From: Tomas Cohen Arazi Date: Mon, 7 Aug 2017 11:27:33 -0300 Subject: [PATCH] Bug 19034: (followup) Fix letters.tt XSS flaw Signed-off-by: Tomas Cohen Arazi Signed-off-by: Mason James --- koha-tmpl/intranet-tmpl/prog/en/modules/tools/letter.tt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/koha-tmpl/intranet-tmpl/prog/en/modules/tools/letter.tt b/koha-tmpl/intranet-tmpl/prog/en/modules/tools/letter.tt index 2af7a0e6eb..379c922ce4 100644 --- a/koha-tmpl/intranet-tmpl/prog/en/modules/tools/letter.tt +++ b/koha-tmpl/intranet-tmpl/prog/en/modules/tools/letter.tt @@ -178,7 +178,7 @@ $(document).ready(function() { [% IF ( search ) %] -

You searched for [% searchfield %]

+

You searched for [% searchfield | html %]

[% END %] [% IF ( letter && !independant_branch) %] [% select_for_copy = BLOCK %] -- 2.39.5