summaryrefslogtreecommitdiffstats
path: root/web
AgeCommit message (Expand)AuthorFilesLines
2011-03-30Be more restrictive with source tarball contents.Lukas Fleischer1-2/+13
2011-03-30Fix XSS vulnerability in "web/template/header.php".Lukas Fleischer1-2/+2
2011-03-30Fix PHP notice when submitting an empty file.Lukas Fleischer1-1/+1
2011-03-30Fix strict standards warnings in "web/html/pkgsubmit.php".Lukas Fleischer1-2/+2
2011-03-30Check if submitted files are in GZIP format.Lukas Fleischer1-2/+16
2011-03-30Fix XSS vulnerabilities in "web/html/voters.php".Lukas Fleischer1-2/+2
2011-03-30Fix PHP undefined notice in "web/html/packages.php".Lukas Fleischer1-1/+6
2011-03-30Fix XSS vulnerabilities in package comment templates.Lukas Fleischer2-3/+3
2011-03-24Bump up default per-page value to 50Dan McGee2-7/+7
2011-03-15Fix main site package search URLDan McGee1-2/+2
2011-03-12Fix searching for orphans with "$LANG != 'en'" (fixes FS#23252).Lukas Fleischer1-1/+1
2011-03-11Fix XSS vulnerability in package search results and package details.Lukas Fleischer2-10/+10
2011-03-11Fix broken XHTML.Lukas Fleischer14-154/+170
2011-03-10Perform a second query to find total search countDan McGee1-7/+11
2011-03-10Split package search query into partsDan McGee1-20/+20
2011-03-10More PHP Notice undefined fixupsDan McGee3-3/+12
2011-03-09Release 1.8.1.1.8.1Lukas Fleischer1-1/+1
2011-03-04Fix outdated link in My Statistics paneDan McGee1-1/+1
2011-03-04Add a sanitize_ids function and use it in all pkg_* functionsDan McGee1-33/+22
2011-03-04Set a default timezoneDan McGee1-0/+2
2011-03-04Fix PHP notices in account pagesDan McGee2-18/+28
2011-03-04Remove dead dependency/required by link codeDan McGee2-29/+7
2011-03-04Ensure all variables are set in package search formDan McGee1-21/+13
2011-03-04Fix PHP notices in pkg_search_formDan McGee1-7/+7
2011-03-04Fix PHP notice: requiredby arrayDan McGee1-3/+2
2011-03-04Fix main site URLDan McGee1-2/+2
2011-03-04Add action lookup helper functionDan McGee2-11/+16
2011-03-04Ensure all package ID values are coerced to integersDan McGee1-18/+22
2011-03-04Vastly simplify pkg_delete functionDan McGee1-58/+8
2011-03-04Ensure users can be deleted when foreign keys are presentDan McGee1-1/+0
2011-03-04Small template cleanupDan McGee1-2/+1
2011-03-04Improve cookie handlingDan McGee2-14/+11
2011-03-01Fix potential injection vulnerabilityDan McGee1-2/+7
2011-02-27Set the character set when connecting to mysqlFlorian Pritz1-0/+2
2011-02-27Define "Packages.SubmitterUID" and "Packages.MaintainerUID" as "NULL".Lukas Fleischer5-7/+7
2011-02-27Define "PackageComments.DelUsersID" as "NULL".Lukas Fleischer1-2/+2
2011-02-25Reject blacklisted packages on initial submission only.Lukas Fleischer1-9/+9
2011-02-23Protect users against ZIP bombs (fixes FS#22991).Lukas Fleischer2-0/+17
2011-02-23Add a per-user session limit (fixes FS#12898).Lukas Fleischer2-1/+18
2011-02-22Add ability to search for non-out-of-date packages (fixes FS#17896).Lukas Fleischer2-6/+20
2011-02-21Reject packages with subdirectories (fixes FS#22995).Lukas Fleischer1-0/+3
2011-02-21Fix typo in "web/lib/pkgfuncs.inc".Wieland Hoffmann1-2/+2
2011-02-21Make persistent cookie timeout configurable via "config.inc" (FS#22994).Lukas Fleischer2-1/+5
2011-02-21Automatically adopt when updating an orphan package (fixes FS#22992).Lukas Fleischer2-6/+8
2011-02-21Use move_uploaded_file() instead of rename() in "pkgsubmit.php".Lukas Fleischer1-1/+1
2011-02-20Release 1.8.0.1.8.0Lukas Fleischer1-1/+1
2011-02-18Support for langauges written right-to-leftPyroPeter3-16/+46
2011-02-18pkg_search_results: replace blind-table with floating divsPyroPeter3-61/+72
2011-02-17pkg_search_results: rewrite of paginationPyroPeter3-69/+46
2011-02-11Add a package name blacklist.Lukas Fleischer2-0/+32