16 Aug
2017
16 Aug
'17
3:42 p.m.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=19121 --- Comment #5 from Jonathan Druart <jonathan.druart@bugs.koha-community.org> --- (In reply to Marcel de Rooy from comment #3)
Or only pragmatically remove <script>..</script> constructions from parameters now with Koha::CGI?
It is not only script elements, we need to escape all HTML characters. -- You are receiving this mail because: You are watching all bug changes.