From 7e9a71a43851d8b2a67577a83c8d7d2e68efcf8e Mon Sep 17 00:00:00 2001 From: Tomas Cohen Arazi Date: Mon, 7 Aug 2017 11:27:33 -0300 Subject: [PATCH] Bug 19034: (followup) Fix letters.tt XSS flaw Signed-off-by: Tomas Cohen Arazi Signed-off-by: Jonathan Druart --- koha-tmpl/intranet-tmpl/prog/en/modules/tools/letter.tt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/koha-tmpl/intranet-tmpl/prog/en/modules/tools/letter.tt b/koha-tmpl/intranet-tmpl/prog/en/modules/tools/letter.tt index 09a5e793d8..056f9b4343 100644 --- a/koha-tmpl/intranet-tmpl/prog/en/modules/tools/letter.tt +++ b/koha-tmpl/intranet-tmpl/prog/en/modules/tools/letter.tt @@ -198,7 +198,7 @@ $(document).ready(function() { [% IF ( search ) %] -

You searched for [% searchfield %]

+

You searched for [% searchfield | html %]

[% END %] [% IF ( letter && !independant_branch) %] [% select_for_copy = BLOCK %] -- 2.39.5