index
:
Filebin
dev
dev-2.x
dev-parallel-tests
dev-text-paste-preview
hash-collision
master
no-ouput-if-error
release/1.x
The software behind paste.xinu.at
Florian Pritz
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
system
/
core
/
Security.php
Age
Commit message (
Expand
)
Author
Files
Lines
2014-01-07
Fix #2268 (manually implementing PR #2269)
Andrey Andreev
1
-3
/
+3
2013-10-18
Eh ... preg_replace() needs a replacement
Andrey Andreev
1
-2
/
+2
2013-10-18
Fix issue #2681 (alternative to PR #2690)
Andrey Andreev
1
-2
/
+2
2013-10-17
Replace the last rand() with mt_rand()
vlakoff
1
-2
/
+2
2013-10-03
partial fix #2667
David Cox Jr
1
-1
/
+1
2013-08-04
Rename bad chars property to filename_bad_chars, remove the setter and add ch...
Hunter Wu
1
-15
/
+2
2013-08-03
Make the bad filename array public in Security library
Hunter Wu
1
-18
/
+38
2013-08-03
Revert "Add windows filename rule as an option for upload files"
Hunter Wu
1
-32
/
+19
2013-08-01
Add windows filename rule as an option for upload files
Hunter Wu
1
-19
/
+32
2013-03-30
Some cleanup related to mt_rand()
vlakoff
1
-2
/
+1
2013-01-29
Replace CI_Upload::clean_file_name() usage with CI_Security::sanitize_filename()
Andrey Andreev
1
-1
/
+9
2013-01-01
[ci skip] Happy new year
Andrey Andreev
1
-1
/
+1
2012-12-19
[ci skip] Some micro-optimizations and style changes
Andrey Andreev
1
-3
/
+3
2012-12-18
Replaced spaces with tabs for indentation and || with OR
brian978
1
-9
/
+9
2012-12-18
Merge remote-tracking branch 'upstream/develop' into develop
brian978
1
-2
/
+2
2012-12-17
update for Issue #2064 (changed docblocks which return $this or only call a m...
Andrew Podner
1
-2
/
+2
2012-12-11
Modified regexp to match partial tags
brian978
1
-2
/
+2
2012-12-10
Removed boundary from regexp
brian978
1
-1
/
+1
2012-12-10
Fixed bug with regexp that matched tags
brian978
1
-1
/
+1
2012-12-08
All the HEX code must be replaced or else some XSS attacks can be successful
brian978
1
-3
/
+11
2012-12-03
Added small improvement to the _remove_evil_attributes function
brian978
1
-6
/
+5
2012-12-03
[ci skip] Cleaned some spaces
Andrey Andreev
1
-2
/
+1
2012-11-01
Manually apply PR #1594 (fixing phpdoc page-level generation/warnings)
Andrey Andreev
1
-1
/
+2
2012-10-28
[ci skip] DocBlock improvements for Security library
Andrey Andreev
1
-77
/
+100
2012-10-24
[ci skip] Document get_csrf_token_name(), get_csrf_hash() (issue #715)
Andrey Andreev
1
-1
/
+1
2012-10-22
Add is_https() as a common function
Andrey Andreev
1
-1
/
+1
2012-07-02
Clean up regexes in Security->xss_clean()
vlakoff
1
-7
/
+7
2012-06-26
Fix issue #427
Andrey Andreev
1
-0
/
+13
2012-06-12
Change file permissions for system/core/*.php and system/database/DB.php so t...
Andrey Andreev
1
-0
/
+0
2012-06-04
Revert/optimize some changes from ed944a3c70a0bad158cd5a6ca5ce1f2e717aff5d
Andrey Andreev
1
-1
/
+1
2012-06-02
Replaced `==` with `===` and `!=` with `!==` in /system/core
Alex Bilbie
1
-4
/
+4
2012-05-27
Continuation for Security and Table code-coverage, add coverage report to travis
Taufan Aditya
1
-0
/
+1
2012-05-17
Merge branch 'develop' of github.com:EllisLab/CodeIgniter into develop
Phil Sturgeon
1
-7
/
+9
2012-05-17
Fixed conflicts from merging in 2.1.1.
Phil Sturgeon
1
-1
/
+1
2012-05-17
Cleanup the core classes
Andrey Andreev
1
-8
/
+10
2012-05-17
Check cookie against md5 regex.
Alexander Hofstede
1
-1
/
+1
2012-05-07
Merge branch 'develop' of github.com:EllisLab/CodeIgniter into develop
Wes Baker
1
-48
/
+52
2012-04-24
Updating XSS cleaning to better handle base64 encoded attributes.
Wes Baker
1
-6
/
+8
2012-04-23
Use tabs to separate class properties
Timothy Warren
1
-7
/
+7
2012-04-19
Additional formatting fixes
Timothy Warren
1
-42
/
+42
2012-04-19
Normalize comments in core files
Timothy Warren
1
-4
/
+7
2012-03-18
add support for httponly cookies
freewil
1
-1
/
+9
2012-03-09
Merge branch 'develop' of github.com:EllisLab/CodeIgniter into develop
Phil Sturgeon
1
-2
/
+2
2012-03-09
Bumped CodeIgniter's PHP requirement to 5.2.4.
Phil Sturgeon
1
-1
/
+1
2012-03-08
Fix issue #940
Andrey Andreev
1
-2
/
+2
2012-02-29
Add strtolower to the HTTPS check
Andrey Andreev
1
-1
/
+1
2012-02-27
Do not create a CSRF cookie if CSRF protection is not enabled
Andrey Andreev
1
-19
/
+20
2012-01-09
Some more stuff ...
Andrey Andreev
1
-17
/
+6
2012-01-08
Remove some tabs
Andrey Andreev
1
-1
/
+1
2012-01-08
Merge remote-tracking branch 'upstream/develop' into develop-core-security
Andrey Andreev
1
-3
/
+8
[prev]
[next]