[Bug 26102] Javascript injection in intranet search
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=26102 wainuiwitikapark@catalyst.net.nz changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #130936|0 |1 is obsolete| | --- Comment #58 from wainuiwitikapark@catalyst.net.nz --- Created attachment 131004 --> https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=131004&action=edit Bug 26102: [19.11] Prevent XSS when To.json is used: unimarc_field_4XX.tt To test, edit a MARC framework to link a subfield to the unimarc_field_4XX.tt. The process of triggering the plugin and selecting a search result from the plugin popup should work correctly. Signed-off-by: Wainui Witika-Park <wainuiwitikapark@catalyst.net.nz> -- You are receiving this mail because: You are watching all bug changes.
participants (1)
-
bugzilla-daemon@bugs.koha-community.org