http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7955 Jonathan Druart <jonathan.druart@biblibre.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #10520|0 |1 is obsolete| | --- Comment #26 from Jonathan Druart <jonathan.druart@biblibre.com> --- Created attachment 10746 --> http://bugs.koha-community.org/bugzilla3/attachment.cgi?id=10746&action=edit Bug 7955: Followup : Check the syspref value (avoid sql injection) I think this one is a compromise. The syspref value is check. It have to filled with only word (\w), integer (\d), underscore (_) or pipe (|). -- You are receiving this mail because: You are watching all bug changes.