summaryrefslogtreecommitdiffstats
path: root/system/core
AgeCommit message (Collapse)AuthorFilesLines
2017-03-20Fix Apache header injection vulnerability in set_status_header()Andrey Andreev1-5/+5
2017-02-06[ci skip] Eliminate a needless array_merge() call from PR #5006 patchAndrey Andreev1-6/+3
2017-02-06Merge pull request #5006 from tianhe1986/develop_commonAndrey Andreev1-8/+8
Fix two bugs with Common Functions
2017-02-01Fix a CI_Input::set_cookie() bugAndrey Andreev1-9/+7
Found on StackOverflow: https://stackoverflow.com/questions/41925028/codeigniter-config-overrides-set-cookie-parameters
2017-01-23Merge pull request #4991 from verkhoumov/developAndrey Andreev1-5/+0
Removed dead code from show_error()
2017-01-20Don't use each()Andrey Andreev1-2/+2
Will be deprecated in PHP 7.2
2017-01-19hash_pbkdf2() byte-safety again ... actually tell mbstring to use 8bitAndrey Andreev1-2/+2
2017-01-19hash_pbkdf2() byte-safetyAndrey Andreev1-4/+13
2017-01-19More byte-safetyAndrey Andreev3-14/+14
2017-01-17[ci skip] Merge pull request #4986 from ka7/feature/spellingAndrey Andreev2-2/+2
Spelling fixes in comment blocks and docs
2017-01-11[ci skip] Merge pull request #4977 from ↵Andrey Andreev1-1/+1
fabiospampinato/fabiospampinato-loader-helper-regex-fix Fixed regex used for loading helpers
2017-01-10Fix Undefined variable: object errorChris Faulkner1-2/+2
Change the undefined variable $object to $vars when calling get_object_vars(). This fixes an error when passing an object to a view.
2017-01-09[ci skip] Mark the beginning of 3.1.4-devAndrey Andreev1-1/+1
2017-01-09[ci skip] Prepare 3.1.3 releaseAndrey Andreev1-1/+1
2017-01-04Fix a possible file inclusion vulnerability in CI_Loader::vars()Andrey Andreev1-30/+28
2017-01-04[ci skip] Protect CSRF verification from timing side-channel attacksAndrey Andreev1-6/+8
2017-01-04Fix an XSS vulnerabilityAndrey Andreev1-1/+1
2017-01-03Update copyright data to 2017Master Yoda21-42/+42
2016-12-01[ci skip] Fix #4928Andrey Andreev1-1/+4
2016-12-01Fix #4927Andrey Andreev1-3/+4
2016-11-14Fix #4905Andrey Andreev1-32/+8
2016-11-03Fix #4679, for realAndrey Andreev1-1/+1
2016-10-28[ci skip] Mark the start of 3.1.3-devAndrey Andreev1-1/+1
2016-10-28[ci skip] Prepare for 3.1.2 releaseAndrey Andreev1-1/+1
2016-10-28[ci skip] xss_clean() hardeningAndrey Andreev1-10/+11
- percent-sign tag (IE) - data: URI scheme inclinding whitespace (Chrome)
2016-10-28Improve byte-safetyAndrey Andreev2-9/+106
2016-10-27Close #4875Andrey Andreev1-1/+20
2016-10-27[ci skip] This is 3.1.2-devAndrey Andreev1-1/+1
2016-10-26Fix #4877Andrey Andreev1-5/+29
2016-10-22[ci skip] Prepare for 3.1.1 releaseAndrey Andreev1-1/+1
2016-10-22Merge branch 'security/entity_decode' into 3.1-stableAndrey Andreev1-17/+22
2016-10-21Fix #4865Andrey Andreev2-1/+1
2016-10-11[ci skip] Add new HTTP status codesAndrey Andreev1-1/+6
https://tools.ietf.org/html/rfc2817 https://tools.ietf.org/html/rfc6585 Requested in #4835
2016-09-27Fix entity_decode() issueAndrey Andreev1-17/+22
2016-08-29Merge pull request #4785 from guitarrist/developAndrey Andreev1-1/+1
[ci skip] Fix a comment typo
2016-08-23Merge pull request #4781 from tianhe1986/develop_hash_pbkdf2Andrey Andreev1-1/+1
Hash: processing algorithm name case-insensitively in hash_pbkdf2()
2016-08-22Merge pull request #4780 from tianhe1986/develop_standard_hex2binAndrey Andreev1-1/+1
[ci skip] Trigger error for "resource" type in hex2bin() inputs
2016-08-19Merge pull request #4777 from tianhe1986/develop_error_handlerAndrey Andreev1-1/+1
Add E_PARSE to errors detected by shutdown handler
2016-07-28[ci skip] Use const keyword to define CI_VERSIONAndrey Andreev1-1/+1
Because.
2016-07-28Remove dead code written for PHP 5.2Andrey Andreev4-219/+3
2016-07-26[ci skip] Mark the start of 3.1.1 developmentAndrey Andreev1-1/+1
2016-07-26Prepare for 3.1.0 releaseClaudio Galdiolo1-1/+1
2016-07-25Merge pull request #4725 from tianhe1986/develop_url_encode_case_insensitiveAndrey Andreev1-2/+2
Fix remove_invisible_characters() for URL-encoded characters in upper case
2016-07-25Merge pull request #4724 from tianhe1986/develop_is_https_strtolowerAndrey Andreev1-1/+1
Compare X-Forwarded-Proto case-insensitively
2016-07-19Fix #4679Andrey Andreev1-2/+2
2016-05-20Merge pull request #4638 from kasimtan/phpdoc_fixesAndrey Andreev4-4/+4
[ci skip] Fixed PHPDoc parameter name and type discrepancies
2016-04-28Fix #4605Andrey Andreev1-6/+3
2016-04-04Fix #4563Andrey Andreev1-12/+14
2016-03-22random_bytes()-related improvementsAndrey Andreev1-4/+22
See #4260
2016-03-22[ci skip] Fix CI_VERSIONAndrey Andreev1-1/+1
generated by cgit v1.2.3-24-g4f1b (git 2.32.0) at 2024-12-03 04:24:41 +0100