[Koha-bugs] [Bug 22836] Tests catching XSS vulnerabilities in pagination are not correct
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Mon May 13 15:28:53 CEST 2019
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=22836
Martin Renvoize <martin.renvoize at ptfs-europe.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|Needs Signoff |Signed Off
CC| |martin.renvoize at ptfs-europe
| |.com
--- Comment #9 from Martin Renvoize <martin.renvoize at ptfs-europe.com> ---
I've come to the conclusion that Jonathan is correct here.
1) We need to have a generic test for missing filters in pagination
2) The 'noise' created by not cleaning up the lines directly is inconsequential
(in so much as it'll only ever appear if someone is attempting to XSS us AND
the end user will never see it unless they're inspecting the html).
Signing off.
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list