Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2017-03-24 | Merge branch '3.1-stable' into develop | Andrey Andreev | 7 | -40/+44 | |
Conflicts resolved: system/core/CodeIgniter.php system/core/Common.php system/core/Input.php system/helpers/cookie_helper.php tests/codeigniter/helpers/html_helper_test.php user_guide_src/source/changelog.rst user_guide_src/source/conf.py user_guide_src/source/installation/downloads.rst user_guide_src/source/installation/upgrading.rst user_guide_src/source/libraries/input.rst | |||||
2017-03-20 | [ci skip] Mark the start of 3.1.5-dev | Andrey Andreev | 1 | -1/+1 | |
2017-03-20 | [ci skip] Prepare 3.1.4 release | Andrey Andreev | 1 | -1/+1 | |
2017-03-20 | Fix Apache header injection vulnerability in set_status_header() | Andrey Andreev | 1 | -5/+5 | |
2017-02-07 | Allow to omit trailing slash in config paths | vlakoff | 3 | -2/+16 | |
2017-02-06 | [ci skip] Eliminate a needless array_merge() call from PR #5006 patch | Andrey Andreev | 1 | -6/+3 | |
2017-02-06 | Merge pull request #5006 from tianhe1986/develop_common | Andrey Andreev | 1 | -8/+8 | |
Fix two bugs with Common Functions | |||||
2017-02-04 | Removing url encoded 127. | tianhe1986 | 1 | -0/+1 | |
Signed-off-by: tianhe1986 <w1s2j3229@163.com> | |||||
2017-02-04 | Loading global mimes config file first, and then environment file. | tianhe1986 | 1 | -8/+7 | |
Signed-off-by: tianhe1986 <w1s2j3229@163.com> | |||||
2017-02-01 | Fix a CI_Input::set_cookie() bug | Andrey Andreev | 1 | -9/+7 | |
Found on StackOverflow: https://stackoverflow.com/questions/41925028/codeigniter-config-overrides-set-cookie-parameters | |||||
2017-01-23 | Merge pull request #4991 from verkhoumov/develop | Andrey Andreev | 1 | -5/+0 | |
Removed dead code from show_error() | |||||
2017-01-21 | Fixed show_error() for check $exit_status | Dmitriy Verkhoumov | 1 | -5/+0 | |
At the beginning of the function it checks whether a parameter $status_code is less than 100. Then the parameter $exit_status is formed by summing the $status_code + 9. In this case, the parameter $exit_status can not be more than 108, but somehow it is checked whether the value of the parameter $exit_status over 125. Such a situation can not occur under any circumstances. | |||||
2017-01-20 | Don't use each() | Andrey Andreev | 1 | -2/+2 | |
Will be deprecated in PHP 7.2 | |||||
2017-01-19 | hash_pbkdf2() byte-safety again ... actually tell mbstring to use 8bit | Andrey Andreev | 1 | -2/+2 | |
2017-01-19 | hash_pbkdf2() byte-safety | Andrey Andreev | 1 | -4/+13 | |
2017-01-19 | More byte-safety | Andrey Andreev | 3 | -14/+14 | |
2017-01-17 | [ci skip] Merge pull request #4986 from ka7/feature/spelling | Andrey Andreev | 2 | -2/+2 | |
Spelling fixes in comment blocks and docs | |||||
2017-01-16 | spelling fixes(1) | klemens | 1 | -1/+1 | |
2017-01-16 | spelling fixes | klemens | 2 | -2/+2 | |
2017-01-11 | [ci skip] Merge pull request #4977 from ↵ | Andrey Andreev | 1 | -1/+1 | |
fabiospampinato/fabiospampinato-loader-helper-regex-fix Fixed regex used for loading helpers | |||||
2017-01-11 | Fixed regex used for loading helpers | Fabio Spampinato | 1 | -1/+1 | |
We want to exactly match a dot, so we have to escape it. I found the bug because in my project I load an helper named `session_php_helper.php`, so the `_php` part gets removed and the `session_helper.php` helper gets loaded instead, this way not even an error was shown. | |||||
2017-01-10 | Merge branch '3.1-stable' into develop | Andrey Andreev | 2 | -37/+37 | |
Conflicts resolved: system/core/CodeIgniter.php system/database/drivers/sqlite/sqlite_driver.php system/database/drivers/sqlite/sqlite_forge.php system/database/drivers/sqlite/sqlite_result.php system/database/drivers/sqlite/sqlite_utility.php system/helpers/email_helper.php system/helpers/smiley_helper.php system/libraries/Cart.php system/libraries/Email.php system/libraries/Image_lib.php system/libraries/Javascript.php system/libraries/Javascript/Jquery.php system/libraries/Session/SessionHandlerInterface.php user_guide_src/source/changelog.rst user_guide_src/source/installation/downloads.rst user_guide_src/source/installation/upgrading.rst | |||||
2017-01-10 | Fix Undefined variable: object error | Chris Faulkner | 1 | -2/+2 | |
Change the undefined variable $object to $vars when calling get_object_vars(). This fixes an error when passing an object to a view. | |||||
2017-01-09 | [ci skip] Mark the beginning of 3.1.4-dev | Andrey Andreev | 1 | -1/+1 | |
2017-01-09 | [ci skip] Prepare 3.1.3 release | Andrey Andreev | 1 | -1/+1 | |
2017-01-05 | [ci skip] || -> OR | Andrey Andreev | 1 | -1/+1 | |
2017-01-04 | Close #4904 | Andrey Andreev | 1 | -3/+3 | |
2017-01-04 | Fix a possible file inclusion vulnerability in CI_Loader::vars() | Andrey Andreev | 1 | -30/+28 | |
2017-01-04 | [ci skip] Protect CSRF verification from timing side-channel attacks | Andrey Andreev | 1 | -6/+8 | |
2017-01-04 | Fix an XSS vulnerability | Andrey Andreev | 1 | -1/+1 | |
2017-01-03 | Update copyright data to 2017 | Master Yoda | 21 | -42/+42 | |
2016-12-31 | Update copyright data to 2017 | Master Yoda | 21 | -42/+42 | |
2016-12-14 | Move csrf_verify() call out of CI_Input | Andrey Andreev | 3 | -24/+7 | |
2016-12-14 | Isolate CI_Security instantiation from CI_Input; improve tests | Andrey Andreev | 3 | -11/+10 | |
2016-12-14 | Drop all PHP 5.3-related code | Andrey Andreev | 9 | -153/+10 | |
2016-12-14 | Finally drop CI_Input::_sanitize_globals() | Andrey Andreev | 1 | -160/+8 | |
Close #4101 | |||||
2016-12-14 | Remove 'global_xss_filtering' config setting | Andrey Andreev | 1 | -23/+9 | |
2016-12-14 | Remove 'allow_get_array', 'standardize_newlines' config settings | Andrey Andreev | 1 | -22/+1 | |
2016-12-14 | Merge branch '3.1-stable' into develop | Andrey Andreev | 1 | -1/+4 | |
2016-12-14 | Move 'standardize_newlines' proc out of CI_Input::_clean_input_data() | Andrey Andreev | 1 | -17/+7 | |
Preparation for CI_Input::_sanitize_globals() removal. Also, WTF?! I'm deprecating this functionality in 3.1.next. | |||||
2016-12-01 | [ci skip] Fix #4928 | Andrey Andreev | 1 | -1/+4 | |
2016-12-01 | Remove previously deprecated CI_Config::system_url() | Andrey Andreev | 1 | -14/+0 | |
2016-12-01 | Remove previously deprecated fetch_*() methods from CI_Router | Andrey Andreev | 1 | -43/+0 | |
2016-12-01 | Remove previously deprecated CI_Input::is_cli_request() | Andrey Andreev | 1 | -15/+0 | |
2016-12-01 | Merge branch '3.1-stable' into develop | Andrey Andreev | 3 | -36/+13 | |
2016-12-01 | Fix #4927 | Andrey Andreev | 1 | -3/+4 | |
2016-11-14 | Fix #4905 | Andrey Andreev | 1 | -32/+8 | |
2016-11-03 | Fix #4679, for real | Andrey Andreev | 1 | -1/+1 | |
2016-10-28 | Merge branch '3.1-stable' into develop | Andrey Andreev | 6 | -45/+196 | |
Resolved conflicts: system/core/CodeIgniter.php user_guide_src/source/changelog.rst user_guide_src/source/conf.py user_guide_src/source/installation/downloads.rst user_guide_src/source/installation/upgrading.rst user_guide_src/source/libraries/form_validation.rst | |||||
2016-10-28 | [ci skip] Mark the start of 3.1.3-dev | Andrey Andreev | 1 | -1/+1 | |