[Koha-bugs] [Bug 16476] CGI->param('foo') in list context allows XSS ( e.g. Javascript injection) in Koha
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Wed Aug 3 22:21:20 CEST 2016
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=16476
Chris Cormack <chris at bigballofwax.co.nz> changed:
What |Removed |Added
----------------------------------------------------------------------------
Assignee|chris at bigballofwax.co.nz |gmcharlt at gmail.com
QA Contact| |testopia at bugs.koha-communit
| |y.org
Group|Koha security |
Version|unspecified |master
Product|Koha security |Koha
Component|Koha |Architecture, internals,
| |and plumbing
--- Comment #10 from Chris Cormack <chris at bigballofwax.co.nz> ---
Pushed to 3.20.x will be in 3.20.14
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list