[Koha-bugs] [Bug 15809] versions of CGI < 4.08 do not have multi_param
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Fri Feb 19 16:42:37 CET 2016
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=15809
--- Comment #17 from Jonathan Druart <jonathan.druart at bugs.koha-community.org> ---
(In reply to Galen Charlton from comment #16)
> (In reply to Jonathan Druart from comment #14)
> > Is anyone ready to submit a counter-patch?
>
> Working on one that is intended to actually fix at least some of the
> potential vulnerabilities. I feel that this bug's title is not ideal, as
> the focus should be on resolving potential misuse of CGI parameters, not
> merely on quelling noisy warnings in the logs.
The purpose of this first patch was to provide a quick fix to allow the use of
multi_param anywhere else.
The second step will be to get rid of the misuses of CGI->param
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list