Bug 21526: uri escape TT variables when used in 'a href'

[koha_ffzg] / koha-tmpl / intranet-tmpl / prog / en / includes / acquisitions-toolbar.inc

diff --git a/koha-tmpl/intranet-tmpl/prog/en/includes/acquisitions-toolbar.inc b/koha-tmpl/intranet-tmpl/prog/en/includes/acquisitions-toolbar.inc
index 5ad1a08..79824b3 100644 (file)
--- a/koha-tmpl/intranet-tmpl/prog/en/includes/acquisitions-toolbar.inc
+++ b/koha-tmpl/intranet-tmpl/prog/en/includes/acquisitions-toolbar.inc
@@ -16,10 +16,10 @@ function confirm_deletion() {
         </a>
         <ul class="dropdown-menu">
             [% IF CAN_user_acquisition_order_manage && active %]
-                <li><a href="/cgi-bin/koha/acqui/basketheader.pl?booksellerid=[% booksellerid | html %]&amp;op=add_form">Basket</a></li>
+                <li><a href="/cgi-bin/koha/acqui/basketheader.pl?booksellerid=[% booksellerid | uri %]&amp;op=add_form">Basket</a></li>
             [% END %]
             [% IF CAN_user_acquisition_contracts_manage && active %]
-                <li><a href="/cgi-bin/koha/admin/aqcontract.pl?op=add_form&amp;booksellerid=[% booksellerid | html %]">Contract</a></li>
+                <li><a href="/cgi-bin/koha/admin/aqcontract.pl?op=add_form&amp;booksellerid=[% booksellerid | uri %]">Contract</a></li>
             [% END %]
             [% IF ( CAN_user_acquisition_vendors_manage ) %]
                 <li><a href="/cgi-bin/koha/acqui/supplier.pl?op=enter">Vendor</a></li>