From 1e74b19207b0b137788eee44e0456ef682479e1e Mon Sep 17 00:00:00 2001 From: Amit Gupta Date: Mon, 7 Aug 2017 22:17:14 +0530 Subject: [PATCH] Bug 19052 - XSS Flaws in - Invoice search page 1. Hit /cgi-bin/koha/acqui/invoices.pl 2. Enter Invoiceno, ISBN/EAN/ISSN, Title, Author, Publihser, Publication year search box. 3. Notice the iframe is executed. 4. Apply patch. 5. Reload page, and enter iframe again on Invoiceno, ISBN/EAN/ISSN, Title, Author, Publihser, Publication year search box. 6. Notice it is no longer executed. Signed-off-by: Chris Cormack Signed-off-by: Marcel de Rooy Signed-off-by: Mason James --- .../prog/en/modules/acqui/invoices.tt | 24 +++++++++---------- 1 file changed, 12 insertions(+), 12 deletions(-) diff --git a/koha-tmpl/intranet-tmpl/prog/en/modules/acqui/invoices.tt b/koha-tmpl/intranet-tmpl/prog/en/modules/acqui/invoices.tt index daa63652bf..62c991f963 100644 --- a/koha-tmpl/intranet-tmpl/prog/en/modules/acqui/invoices.tt +++ b/koha-tmpl/intranet-tmpl/prog/en/modules/acqui/invoices.tt @@ -209,7 +209,7 @@ $(document).ready(function() {

Search was:

    [% IF ( invoicenumber ) %] -
  • Invoice no.: [% invoicenumber %]
  • +
  • Invoice no.: [% invoicenumber |html %]
  • [% END %] [% IF booksellerid %]
  • Vendor: [% suppliername %]
  • @@ -247,19 +247,19 @@ $(document).ready(function() { [% END %] [% END %] [% IF ( isbneanissn ) %] -
  • ISBN/EAN/ISSN: [% isbneanissn %]
  • +
  • ISBN/EAN/ISSN: [% isbneanissn |html %]
  • [% END %] [% IF ( title ) %] -
  • Title: [% title %]
  • +
  • Title: [% title |html %]
  • [% END %] [% IF ( author ) %] -
  • Author: [% author %]
  • +
  • Author: [% author |html %]
  • [% END %] [% IF ( publisher ) %] -
  • Publisher: [% publisher %]
  • +
  • Publisher: [% publisher |html %]
  • [% END %] [% IF ( publicationyear ) %] -
  • Publication year: [% publicationyear %]
  • +
  • Publication year: [% publicationyear |html %]
  • [% END %] [% IF ( branch ) %]
  • Library: [% branchname %]
  • @@ -279,7 +279,7 @@ $(document).ready(function() {
    1. - +
    2. @@ -326,23 +326,23 @@ $(document).ready(function() {
    3. - +
    4. - +
    5. - +
    6. - +
    7. - +
    8. -- 2.39.5