[Koha-bugs] [Bug 23978] Notes field in saved reports should allow for HTML

bugzilla-daemon--- via Koha-bugs Fri, 16 Feb 2024 06:39:27 -0800

https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=23978


Magnus Enger <mag...@libriotech.no> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |mag...@libriotech.no
             Status|Needs Signoff               |Failed QA

--- Comment #8 from Magnus Enger <mag...@libriotech.no> ---
(In reply to Martin Renvoize from comment #5)
> This patch updates the notes field to a $raw filter to prevent html
> escaping of the data within it.

(In reply to David Cook from comment #7)
> Yeah I don't think we can just expose the raw HTML. 

Sounds like a security problem and a FQA to me. Please set back to NSO if you
disagree. :-)

-- 
You are receiving this mail because:
You are watching all bug changes.
_______________________________________________
Koha-bugs mailing list
Koha-bugs@lists.koha-community.org
https://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs
website : http://www.koha-community.org/
git : http://git.koha-community.org/
bugs : http://bugs.koha-community.org/

[Koha-bugs] [Bug 23978] Notes field in saved reports should allow for HTML

Reply via email to