[Patches] [PATCH] [3.4.x] Bug 6629 fix for vulnerability
koha-patchbot at kohaaloha.com
koha-patchbot at kohaaloha.com
Fri Nov 25 20:40:03 NZDT 2011
From: Chris Cormack <chrisc at catalyst.net.nz>
Date: Fri, 25 Nov 2011 20:38:35 +1300
Subject: [PATCH] [3.4.x] Bug 6629 fix for vulnerability
---
C4/Templates.pm | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
diff --git a/C4/Templates.pm b/C4/Templates.pm
index eaec07d..2820af1 100644
--- a/C4/Templates.pm
+++ b/C4/Templates.pm
@@ -180,7 +180,7 @@ sub themelanguage_lite {
# But, if there's a cookie set, obey it
$lang = $query->cookie('KohaOpacLanguage')
if ( defined $query and $query->cookie('KohaOpacLanguage') );
-
+ $lang =~ s/[^a-zA-Z_-]*//;
# Fall back to English
my @languages;
if ( $interface eq 'intranet' ) {
--
1.7.5.4
More information about the Patches
mailing list