[Koha-bugs] [Bug 21418] Incorrectly filtered markup in staff client lists

bugzilla-daemon at bugs.koha-community.org bugzilla-daemon at bugs.koha-community.org
Tue Oct 2 18:42:49 CEST 2018


https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=21418

--- Comment #11 from Josef Moravec <josef.moravec at gmail.com> ---
Created attachment 79831
  -->
https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=79831&action=edit
Bug 21418: Html escape the 2 variables

We should be on the safe side without this patch because shelfnumber and
type comes from the DB and are integer or varchar. It may be better to
show good examples to start, and escape everything anyway.

Signed-off-by: Jonathan Druart <jonathan.druart at bugs.koha-community.org>

Signed-off-by: Owen Leonard <oleonard at myacpl.org>

Signed-off-by: Josef Moravec <josef.moravec at gmail.com>

-- 
You are receiving this mail because:
You are watching all bug changes.


More information about the Koha-bugs mailing list