summaryrefslogtreecommitdiffstats
path: root/system/core
AgeCommit message (Expand)AuthorFilesLines
2015-10-31Prevent Host header injectionsAndrey Andreev1-4/+2
2015-10-31Harden xss_clean()Andrey Andreev1-27/+39
2015-10-30Fix #3201Andrey Andreev1-1/+6
2015-10-12Merge branch '3.0-stable' into developAndrey Andreev6-111/+163
2015-10-12[ci skip] This is 3.0.3-devAndrey Andreev1-1/+1
2015-10-08[ci skip] Prepare 3.0.2 releaseAndrey Andreev1-1/+1
2015-10-05Some more intrusive XSS cleaningAndrey Andreev1-5/+11
2015-10-02More XSS stuffAndrey Andreev1-1/+1
2015-09-24Fix #4137Andrey Andreev1-1/+1
2015-09-21More XSS stuffAndrey Andreev1-3/+3
2015-09-17Don't allow open-ended tags to pass through xss_clean()Andrey Andreev1-4/+9
2015-09-17Refactor 'evil attributes' sanitization logicAndrey Andreev1-92/+66
2015-09-15Missing character in the evil attributes patternAndrey Andreev1-1/+1
2015-09-14Another addition to tag detection patterns in xss_clean()Andrey Andreev1-1/+4
2015-09-14Close #4098Andrey Andreev1-2/+18
2015-09-14Fix #4109Andrey Andreev1-20/+22
2015-09-14Add 'eval' to a JS blacklist in xss_clean()Andrey Andreev1-7/+10
2015-09-14Move _remove_evil_attributes() callAndrey Andreev1-4/+3
2015-09-11Harden xss_clean() moreAndrey Andreev1-5/+37
2015-09-11Improve on previous commitAndrey Andreev1-1/+1
2015-09-11Replace the latest XSS patchesAndrey Andreev1-9/+21
2015-09-10Last commit didn't adjust a RE indexAndrey Andreev1-1/+1
2015-09-10Fix & extend 700619cebf75c4e4fcda6a2d7bea1afb84a029e4Andrey Andreev1-2/+2
2015-09-10Fix #4106Andrey Andreev1-2/+2
2015-09-07Remove unnecessary count() calls from _sanitize_globals()Andrey Andreev1-3/+3
2015-09-07Move csrf_verify() call out of _sanitize_globals()Andrey Andreev1-6/+6
2015-08-17Allow capitals in the middle of model namesAndrey Andreev1-1/+1
2015-08-15Fix #4056Andrey Andreev1-1/+1
2015-08-14Merge branch '3.0-stable' into developAndrey Andreev1-20/+0
2015-08-14Fix #4052Andrey Andreev1-20/+0
2015-08-13Fix typo in commentsClaudio Galdiolo1-1/+1
2015-08-13Fix typo in commentsClaudio Galdiolo1-1/+1
2015-08-07[ci skip] Start of 3.1.0-devAndrey Andreev1-1/+1
2015-08-07[ci skip] Start of 3.0.2-devAndrey Andreev1-1/+1
2015-08-05Fix #4027Andrey Andreev1-8/+12
2015-08-03[ci skip] Normalize tabs/spacesAndrey Andreev2-3/+3
2015-07-28Fix #4005Andrey Andreev1-1/+1
2015-07-27Close #4004Andrey Andreev1-1/+3
2015-07-24Fixed typosCalvin Tam1-1/+1
2015-07-22Remove eval()-related logic from function_exists()Andrey Andreev1-13/+3
2015-07-22Add class_exists() checks to CI_Loader::model()Andrey Andreev1-12/+26
2015-07-22Fix #3991Andrey Andreev1-1/+1
2015-07-17Fix #3752Andrey Andreev1-21/+22
2015-07-15[ci skip] Revert styleguide violations from PR #3828Andrey Andreev1-3/+3
2015-07-15Merge branch 'patch-1' of github.com:w0den/CodeIgniter into feature/output_cacheAndrey Andreev1-7/+28
2015-07-15Fix a TypoMohammad Sadegh Dehghan Niri1-1/+1
2015-07-06fix typo in router classftwbzhao1-1/+1
2015-06-08Fix #3890Andrey Andreev1-5/+13
2015-05-11Improve Cache Query String behaviourw0den1-6/+27
2015-05-02Bug Fix manually delete caching methodw0den1-1/+1