[Bug 2026] Comments allow unsanitized input
1 May
2008
1 May
'08
12:10 a.m.
http://bugs.koha.org/cgi-bin/bugzilla/show_bug.cgi?id=2026 ------- Comment #1 from galen.charlton@liblime.com 2008-04-30 15:10 ------- Patch submitted that partially addresses this by using HTML encoding/escaping when displaying comments in staff and OPAC. Complete fix would implement some kind of scrubbing so that unsafe tags are not even stored in the database. ------- You are receiving this mail because: ------- You are the QA contact for the bug, or are watching the QA contact.
6649
Age (days ago)
6649
Last active (days ago)
0 comments
1 participants
participants (1)
-
bugzilla-daemon@pippin.metavore.com