diff options
author | Ivan Kohler <ivan@freeside.biz> | 2013-11-17 17:10:06 -0800 |
---|---|---|
committer | Ivan Kohler <ivan@freeside.biz> | 2013-11-17 17:10:06 -0800 |
commit | d4cdc4db87f1b6a373398b7ab33e791bd0527dda (patch) | |
tree | 899459b98e0b15bee54d0b67a41e6eed189e199f /httemplate/elements/searchbar-cust_main.html | |
parent | 0076a0d790d1385cd2a16472ec2c11528edbc9e3 (diff) |
don't redirect to a GET with sensitive data, RT#26099
Diffstat (limited to 'httemplate/elements/searchbar-cust_main.html')
-rw-r--r-- | httemplate/elements/searchbar-cust_main.html | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/httemplate/elements/searchbar-cust_main.html b/httemplate/elements/searchbar-cust_main.html index 9a98417c8..5bfef484a 100644 --- a/httemplate/elements/searchbar-cust_main.html +++ b/httemplate/elements/searchbar-cust_main.html @@ -1,6 +1,6 @@ % if ( $curuser->access_right('List customers') ) { - <FORM ACTION="<%$fsurl%>search/cust_main.cgi" METHOD="GET" STYLE="margin:0"> + <FORM ACTION="<%$fsurl%>search/cust_main.cgi" METHOD="POST" STYLE="margin:0"> <INPUT NAME="search_cust" TYPE="text" VALUE="<% $cust_label |n %>" STYLE="width:<%$width%>" onFocus="clearhint_search_cust(this);" onClick="clearhint_search_cust(this);" CLASS="fstext"><BR> <A HREF="<%$fsurl%>search/report_cust_main.html" CLASS="fslink" STYLE="font-size: 11px"><% mt('Advanced') |h %></A> <INPUT TYPE="submit" VALUE="<% mt('Search customers') |h %>" CLASS="fsblackbutton" onMouseOver="this.className='fsblackbuttonselected'; return true;" onMouseOut="this.className='fsblackbutton'; return true;" STYLE="font-size:11px"> |