summaryrefslogtreecommitdiffstats
AgeCommit message (Expand)AuthorFilesLines
2011-03-30Fix XSS vulnerability in "web/template/header.php".Lukas Fleischer1-2/+2
2011-03-30Fix PHP notice when submitting an empty file.Lukas Fleischer1-1/+1
2011-03-30Fix strict standards warnings in "web/html/pkgsubmit.php".Lukas Fleischer1-2/+2
2011-03-30Check if submitted files are in GZIP format.Lukas Fleischer1-2/+16
2011-03-30Fix XSS vulnerabilities in "web/html/voters.php".Lukas Fleischer1-2/+2
2011-03-30Fix PHP undefined notice in "web/html/packages.php".Lukas Fleischer1-1/+6
2011-03-30Fix XSS vulnerabilities in package comment templates.Lukas Fleischer2-3/+3
2011-03-30gendummydata.py: Do not touch output file until we need it.Lukas Fleischer1-5/+5
2011-03-24Bump up default per-page value to 50Dan McGee2-7/+7
2011-03-15Fix main site package search URLDan McGee1-2/+2
2011-03-12Fix searching for orphans with "$LANG != 'en'" (fixes FS#23252).Lukas Fleischer1-1/+1
2011-03-11Fix XSS vulnerability in package search results and package details.Lukas Fleischer2-10/+10
2011-03-11Fix broken XHTML.Lukas Fleischer14-154/+170
2011-03-10Perform a second query to find total search countDan McGee1-7/+11
2011-03-10Split package search query into partsDan McGee1-20/+20
2011-03-10More PHP Notice undefined fixupsDan McGee3-3/+12
2011-03-09Release 1.8.1.1.8.1Lukas Fleischer1-1/+1
2011-03-04Fix outdated link in My Statistics paneDan McGee1-1/+1
2011-03-04Add a sanitize_ids function and use it in all pkg_* functionsDan McGee1-33/+22
2011-03-04Set a default timezoneDan McGee1-0/+2
2011-03-04Fix PHP notices in account pagesDan McGee2-18/+28
2011-03-04Remove dead dependency/required by link codeDan McGee2-29/+7
2011-03-04Ensure all variables are set in package search formDan McGee1-21/+13
2011-03-04Fix PHP notices in pkg_search_formDan McGee1-7/+7
2011-03-04Fix PHP notice: requiredby arrayDan McGee1-3/+2
2011-03-04Fix main site URLDan McGee1-2/+2
2011-03-04Add action lookup helper functionDan McGee2-11/+16
2011-03-04Ensure all package ID values are coerced to integersDan McGee1-18/+22
2011-03-04Vastly simplify pkg_delete functionDan McGee1-58/+8
2011-03-04Ensure users can be deleted when foreign keys are presentDan McGee2-3/+3
2011-03-04Allow DB connection values to come from the environmentDan McGee3-21/+33
2011-03-04Use a single transaction to write dummy dataDan McGee1-0/+2
2011-03-04Small template cleanupDan McGee1-2/+1
2011-03-04Improve cookie handlingDan McGee2-14/+11
2011-03-01Fix potential injection vulnerabilityDan McGee1-2/+7
2011-02-28AUTHORS: Move Callan from "Current Maintainers" to "Contributors".Lukas Fleischer1-1/+1
2011-02-28AUTHORS: Rename "Current Contributors" to "Current Maintainers".Lukas Fleischer1-1/+1
2011-02-28Remove database recreation code from "support/schema/reloadtestdb.sh".Lukas Fleischer1-6/+0
2011-02-28Specify utf8 in database schema.Loui Chang1-4/+4
2011-02-27Add note on merging "web/lib/config.inc.proto" to "UPGRADING".Lukas Fleischer1-0/+2
2011-02-27Fix some minor bugs in "support/schema/gendummydata.py".Lukas Fleischer1-2/+2
2011-02-27Set the character set when connecting to mysqlFlorian Pritz1-0/+2
2011-02-27Add "ENGINE = InnoDB" to "CREATE TABLE" statements in the SQL schema.Lukas Fleischer1-13/+13
2011-02-27Define "Packages.SubmitterUID" and "Packages.MaintainerUID" as "NULL".Lukas Fleischer8-10/+20
2011-02-27Add note on upgrading from MyISAM to InnoDB to "UPGRADING".Lukas Fleischer1-0/+24
2011-02-27Define "PackageComments.DelUsersID" as "NULL".Lukas Fleischer3-3/+6
2011-02-26Add missing foreign keys and constraints to the DB.Lukas Fleischer2-5/+37
2011-02-26Use a real sync algorithm in aurblup (fixes FS#23039).Lukas Fleischer1-37/+101
2011-02-25Reject blacklisted packages on initial submission only.Lukas Fleischer1-9/+9
2011-02-23Protect users against ZIP bombs (fixes FS#22991).Lukas Fleischer2-0/+17