diff options
author | Derek Jones <derek.jones@ellislab.com> | 2007-05-04 20:19:17 +0200 |
---|---|---|
committer | Derek Jones <derek.jones@ellislab.com> | 2007-05-04 20:19:17 +0200 |
commit | 01f72ca6c27d99938cd1f814f812c5b844d51b83 (patch) | |
tree | 56b18a1762feda381932e5ef68a99a251c75a07e /user_guide | |
parent | 4ae32254fe4effa34c42e1f38708cb7a43db9ed8 (diff) |
Modified XSS Cleaning routine to be more performance friendly and compatible with PHP 5.2's new PCRE backtrack and recursion limits.
- replaced link and image tag javascript sanitization preg_replace()'s with callback functions to avoid excessive backtracks on strings with many links / image tags.
Diffstat (limited to 'user_guide')
-rw-r--r-- | user_guide/changelog.html | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/user_guide/changelog.html b/user_guide/changelog.html index 58bf1b620..09800edee 100644 --- a/user_guide/changelog.html +++ b/user_guide/changelog.html @@ -70,6 +70,7 @@ Change Log <li>Fixed a bug in the <a href="./libraries/zip.html">Zip library</a>, providing PC Zip file compatibility with Mac OS X</li>
<li>APPVER has been deprecated and replaced with CI_VERSION for clarity. </li>
<li>Added array to string into the profiler </li>
+ <li>Modified XSS Cleaning routine to be more performance friendly and compatible with PHP 5.2's new PCRE backtrack and recursion limits.</li>
<li>Fixed a bug in router that was ignoring the scaffolding route for optimization </li>
<li>Fixed doc typos. </li>
</ul>
|