[Koha-bugs] [Bug 1624] Edited comments should require approval
bugzilla-daemon at pippin.metavore.com
bugzilla-daemon at pippin.metavore.com
Fri Apr 18 02:07:47 CEST 2008
http://bugs.koha.org/cgi-bin/bugzilla/show_bug.cgi?id=1624
------- Comment #4 from joe.atzberger at liblime.com 2008-04-17 17:07 -------
Rebased today, approval not working. User can still see his own comment on an
item, but others cannot, even after approval.
Comments also have other, bigger issues like totally unsanitized input (see
#2026) and using a GET request for approval. That makes it possible for me to
inject script code to automatically approve a given comment ID.
------- You are receiving this mail because: -------
You are the QA contact for the bug, or are watching the QA contact.
More information about the Koha-bugs
mailing list