[Koha-bugs] [Bug 36195] CSRF - testing reports

[bugzilla-daemon at bugs.koha-community.org]

https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=36195

--- Comment #3 from David Cook <dcook at prosentient.com.au> ---
(In reply to Caroline Cyr La Rose from comment #2)
> I can't search for items using the item search. It returns a 403: Forbidden
> message.

I've looked into this one a bit (as I noticed on framapad), and I think
itemsearch.pl is going to require some refactoring to fix its usage of "op". 

Basically, the "op" in the GET is fine, but it gets used for the POST to the
API too. Could maybe convert that second POST to a GET, although it would be a
long URL...

-- 
You are receiving this mail because:
You are the assignee for the bug.
You are watching all bug changes.