[Koha-bugs] [Bug 26102] Javascript injection in intranet search
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Tue Feb 22 01:51:47 CET 2022
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=26102
wainuiwitikapark at catalyst.net.nz changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #130936|0 |1
is obsolete| |
--- Comment #58 from wainuiwitikapark at catalyst.net.nz ---
Created attachment 131004
-->
https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=131004&action=edit
Bug 26102: [19.11] Prevent XSS when To.json is used: unimarc_field_4XX.tt
To test, edit a MARC framework to link a subfield to the
unimarc_field_4XX.tt. The process of triggering the plugin and selecting
a search result from the plugin popup should work correctly.
Signed-off-by: Wainui Witika-Park <wainuiwitikapark at catalyst.net.nz>
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list