From dd958e62483bab14f072db736b9e8d54dbe595d8 Mon Sep 17 00:00:00 2001 From: Lucas Gass Date: Wed, 28 Sep 2022 14:48:14 +0000 Subject: [PATCH] Revert "Bug 31219: Prevent JS injection in patron extended attributes" This reverts commit ddaa78bdab360f41b9e3672de7f50cd3053b9116. Signed-off-by: Lucas Gass --- opac/opac-memberentry.pl | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/opac/opac-memberentry.pl b/opac/opac-memberentry.pl index e1a86e65b3..f456362c3a 100755 --- a/opac/opac-memberentry.pl +++ b/opac/opac-memberentry.pl @@ -739,7 +739,6 @@ sub ParsePatronAttributes { my $delete_candidates = {}; - my $scrubber = C4::Scrubber->new(); while ( my ( $code, $value ) = $ea->() ) { if ( any { $_ eq $code } @editable_attribute_types ) { # It is an editable attribute @@ -749,7 +748,7 @@ sub ParsePatronAttributes { } else { # we've got a value - push @attributes, { code => $code, attribute => $scrubber->scrub( $value ) }; + push @attributes, { code => $code, attribute => $value }; # 'code' is no longer a delete candidate delete $delete_candidates->{$code} -- 2.39.5