https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=15809 --- Comment #17 from Jonathan Druart <jonathan.druart@bugs.koha-community.org> --- (In reply to Galen Charlton from comment #16)
(In reply to Jonathan Druart from comment #14)
Is anyone ready to submit a counter-patch?
Working on one that is intended to actually fix at least some of the potential vulnerabilities. I feel that this bug's title is not ideal, as the focus should be on resolving potential misuse of CGI parameters, not merely on quelling noisy warnings in the logs.
The purpose of this first patch was to provide a quick fix to allow the use of multi_param anywhere else. The second step will be to get rid of the misuses of CGI->param -- You are receiving this mail because: You are watching all bug changes.