http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=9458
Kyle M Hall <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|Failed QA |Passed QA --- Comment #32 from Kyle M Hall <[email protected]> --- > There's a problem with your latest follow-up: it inserts unsanitized user > input into the page. I checked and it seems that most browsers catch the XSS > if you try to insert Javascript, but I'd rather not depend on that if we > don't have to. To see what I mean, try a link like: > /cgi-bin/koha/virtualshelves/shelves. > pl?viewshelf=55&sort=title&direction=%22%3Ehere's%20some%20text%3Cspan%20styl > e=%22 Fixed! -- You are receiving this mail because: You are watching all bug changes. _______________________________________________ Koha-bugs mailing list [email protected] http://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/
