| commit | 9bef8f8738492564af7da78cba841366c70ada3c | |
| author | Aleisha <aleishaamohia@hotmail.com> | |
| Tue, 9 Jun 2015 02:02:55 +0000 (9 02:02 +0000) | ||
| committer | Tomas Cohen Arazi <tomascohen@gmail.com> | |
| Thu, 11 Jun 2015 13:04:41 +0000 (11 10:04 -0300) | ||
| tree | a3147906710f043d63d2d7bff67a5123fe651439 | treesnapshot (tar.gz zip) |
| parent | 9e920f7479df6d36db3e3450d6e6c2524fa9fe56 | commitdiff |
Bug 14360: Unescaped variable causes alert pop-up
To test:
1) Create a list in the OPAC, name it: <script>alert('Hello');</script>
2) Delete the list
3) Confirm deletion
4) See the alert say 'Hello'
5) Apply patch
6) Recreate list with same name
7) Delete list
8) Confirm deletion and alert no longer pops up
Signed-off-by: Katrin Fischer <Katrin.Fischer.83@web.de>
Signed-off-by: Kyle M Hall <kyle@bywatersolutions.com>
Signed-off-by: Tomas Cohen Arazi <tomascohen@gmail.com>
To test:
1) Create a list in the OPAC, name it: <script>alert('Hello');</script>
2) Delete the list
3) Confirm deletion
4) See the alert say 'Hello'
5) Apply patch
6) Recreate list with same name
7) Delete list
8) Confirm deletion and alert no longer pops up
Signed-off-by: Katrin Fischer <Katrin.Fischer.83@web.de>
Signed-off-by: Kyle M Hall <kyle@bywatersolutions.com>
Signed-off-by: Tomas Cohen Arazi <tomascohen@gmail.com>
| koha-tmpl/opac-tmpl/bootstrap/en/modules/opac-shelves.tt | diffblobblamehistory |