[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-09-05 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Bug 22836 depends on bug 22478, which changed state. Bug 22478 Summary: Cross-site scripting vulnerability in paginations https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22478 What|Removed

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-30 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Martin Renvoize changed: What|Removed |Added Version(s)||19.05.00, 18.11.06

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-15 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Nick Clemens changed: What|Removed |Added CC||n...@bywatersolutions.com

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-13 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 --- Comment #17 from Jonathan Druart --- (In reply to Katrin Fischer from comment #16) > I am not sure about the commit messages - the first 2 are not referring to > this bug. Leaving that to Nick ;) They are ok, as they are

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-13 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Katrin Fischer changed: What|Removed |Added CC||katrin.fisc...@bsz-bw.de

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-13 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Katrin Fischer changed: What|Removed |Added Attachment #89679|0 |1 is obsolete|

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-13 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Katrin Fischer changed: What|Removed |Added Attachment #89678|0 |1 is obsolete|

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-13 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Katrin Fischer changed: What|Removed |Added Patch complexity|--- |Small patch

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-13 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Katrin Fischer changed: What|Removed |Added Attachment #89677|0 |1 is obsolete|

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-13 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Martin Renvoize changed: What|Removed |Added Attachment #89266|0 |1 is obsolete|

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-13 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Martin Renvoize changed: What|Removed |Added Attachment #89265|0 |1 is obsolete|

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-13 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Martin Renvoize changed: What|Removed |Added Attachment #89264|0 |1 is obsolete|

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-13 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Martin Renvoize changed: What|Removed |Added Status|Needs Signoff |Signed Off

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-11 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Jonathan Druart changed: What|Removed |Added Severity|normal |major

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-06 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 --- Comment #8 from Jonathan Druart --- IMO It's not solid code, it's code which leads us to believe that the values are not correctly filtered. -- You are receiving this mail because: You are watching all bug changes.

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-06 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 --- Comment #7 from Jonathan Druart --- (In reply to Marcel de Rooy from comment #6) > (In reply to Jonathan Druart from comment #5) > > Hello Marcel, > > I have tried to explain it in the comment of this bug report. Which part > >

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-05 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 --- Comment #6 from Marcel de Rooy --- (In reply to Jonathan Druart from comment #5) > Hello Marcel, > I have tried to explain it in the comment of this bug report. Which part > does not make sense to you? Improve filtering is

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-03 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 --- Comment #5 from Jonathan Druart --- Hello Marcel, I have tried to explain it in the comment of this bug report. Which part does not make sense to you? -- You are receiving this mail because: You are watching all bug changes.

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-02 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Marcel de Rooy changed: What|Removed |Added CC||m.de.r...@rijksmuseum.nl

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-02 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 --- Comment #2 from Jonathan Druart --- Created attachment 89265 --> https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=89265=edit Revert "Bug 22478: (QA follow-up) Handle category in opac-shelves like a boolean" This

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-02 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 --- Comment #3 from Jonathan Druart --- Created attachment 89266 --> https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=89266=edit Bug 22836: (follow-up) Bug 22478: (QA follow-up) Make test consistent with variable name

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-02 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 --- Comment #1 from Jonathan Druart --- Created attachment 89264 --> https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=89264=edit Revert "Bug 22478: (QA follow-up) Update tests to check for any script tags" This

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-02 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Jonathan Druart changed: What|Removed |Added Status|ASSIGNED|Needs Signoff -- You

[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct

2019-05-02 Thread bugzilla-daemon
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836 Jonathan Druart changed: What|Removed |Added Depends on||22478 Referenced Bugs: