http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=3652
--- Comment #38 from Paul Poulain <paul.poul...@biblibre.com> --- Comment on attachment 12835 --> http://bugs.koha-community.org/bugzilla3/attachment.cgi?id=12835 Bug 3652: close XSS vulnerabilities on biblionumber and authid About this patch, Jared, why do you add || $query->param('bib'); to opac-ISBD|MARCdetail.pl ? I see it's in opac-detail, but it's an oldies and not goodies (in early versions of Koha, biblionumber was sometimes written bib, bn, ... It has been fixed, and I favour removing || $query->param('bib'); from opac-detail.pl, because we must not have param('bib') -- You are receiving this mail because: You are watching all bug changes. _______________________________________________ Koha-bugs mailing list Koha-bugs@lists.koha-community.org http://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/