]> git.koha-community.org Git - koha.git/commit
Bug 11322: fix XSS bug in purchase suggestions - OPAC
authorChris Cormack <chrisc@catalyst.net.nz>
Mon, 2 Dec 2013 22:46:24 +0000 (11:46 +1300)
committerTomas Cohen Arazi <tomascohen@gmail.com>
Tue, 17 Dec 2013 18:51:51 +0000 (15:51 -0300)
commit57757250d6f1c02ffd212052bac5459a76f8625c
tree12ec180ecb419beb16548cb2bd039a78a805da35
parentefe589d54a5ca3f5e7321f1a49e458f6a76d8e82
Bug 11322: fix XSS bug in purchase suggestions - OPAC

1/ Add a suggestion in the opac, with lots of html
2/ View that suggestion in the OPAC, note the html is rendering
3/ Apply the patch
4/ Test again, in prog and bootstrap, no more rendered html

Signed-off-by: David Cook <dcook@prosentient.com.au>
Works as described.

Signed-off-by: Katrin Fischer <Katrin.Fischer.83@web.de>
Signed-off-by: Galen Charlton <gmc@esilibrary.com>
(cherry picked from commit 90f3b84def924dcc76719c01d75aa09241c92f8e)
Signed-off-by: Fridolin SOMERS <fridolin.somers@biblibre.com>
(cherry picked from commit 3eac4854a4309612c4bdd33eed5fbcb77d59d5ad)
Signed-off-by: Tomas Cohen Arazi <tomascohen@gmail.com>
koha-tmpl/opac-tmpl/prog/en/modules/opac-suggestions.tt