summaryrefslogtreecommitdiffstats
path: root/system/helpers
AgeCommit message (Collapse)AuthorFilesLines
2016-07-26Merge pull request #4709 from nopesled/developAndrey Andreev1-1/+1
Filter php:// wrappers in set_realpath() helper
2016-06-22Fix #4675Andrey Andreev1-3/+5
2016-05-20Merge pull request #4638 from kasimtan/phpdoc_fixesAndrey Andreev1-1/+1
[ci skip] Fixed PHPDoc parameter name and type discrepancies
2016-02-07hunanize() helper: Escaping the $separator argument.Ivan Tcholakov1-1/+1
2016-02-04Fix #4427Andrey Andreev1-22/+23
2016-01-29Fix an error from 6af9dd6e24687b6a7b9d14a058a47edcac761e61Andrey Andreev1-1/+1
Related: #4407
2016-01-29Fix #4407Andrey Andreev1-3/+18
2016-01-29Fix a regression in Form helper caused by ↵Andrey Andreev1-2/+2
0139e6a4a99cbe9b0cc06f394fa12d5691193b72
2016-01-11[ci skip] Update ellislab.com links to https tooAndrey Andreev21-21/+21
2016-01-11[ci skip] Update codeigniter.com links to httpsAndrey Andreev21-42/+42
2016-01-11[ci skip] Bump year to 2016Andrey Andreev21-42/+42
2015-12-03Fix #4283Andrey Andreev1-1/+2
2015-11-09[ci skip] Fix an infinite loop in captcha helperAndrey Andreev1-1/+2
2015-11-04[ci skip] Fix a false default-fallback bug in set_checkbox(), set_radio()Andrey Andreev1-8/+33
Relevant: #4210
2015-10-31Use proper randomness when generating CAPTCHAsAndrey Andreev1-2/+87
2015-10-05Close #4155Andrey Andreev1-1/+1
2015-08-07Fix #4023Andrey Andreev1-1/+1
Close #4024
2015-08-07Fix ReDoS-bug in string_helper.phpKevin Morssink1-1/+1
Fix for ReDoS (Regular Expression Denial of Service) / Code Injection Risk
2015-07-24Fixed typosCalvin Tam2-2/+2
2015-07-23Update path_helper.phprajatsharma941-1/+1
2015-07-23Security check updated.rajatsharma941-1/+1
All security check conditions are modified according to CI styleguide.
2015-07-23Update path_helper.phprajatsharma941-1/+1
2015-07-23IP checking false positives and no ipv6 checkrajatsharma941-1/+1
The currently implemented method marks all IPs between 0.0.0.0 - 999.999.999.999 as valid IP Address. Which generates false positives as any IP after 255.255.255.255 is not a valid IP address. Also, there is no check for IPv6 IP addresses. filter_var() solves both the issues.
2015-07-23IP Address checking generates false positives.medhavini1-1/+1
IP Address checking marks all IPs between 0.0.0.0 - 999.999.999.999 as valid IP Address. Which is not true.
2015-07-20Failed security checkrajatsharma941-2/+1
The implemented security check to make sure the path is NOT a URL can easily be bypassed (gives false negative) for all subdomains. Eg "subdomain.domain.com" should ideally show an error but it does not. The new security check tries to make a fsockopen connection to validate whether the URL is external or not.
2015-07-20Security check failmedhavini1-0/+1
Security check condition to check that the path is NOT a URL may give false negative in case of subdomains. Where URLs don't start with http or www.
2015-07-17[ci skip] Fix #3778Andrey Andreev1-15/+6
2015-07-15Polish changes from PR #3893Andrey Andreev1-24/+13
2015-07-15Merge branch 'feature/form_helper' of github.com:darkhouse/CodeIgniter into ↵Andrey Andreev1-10/+28
feature/form_helpers_extra_array Manually fixed conflicts in: user_guide_src/source/changelog.rst
2015-07-13Add check for PCRE UTF-8 supportdimonneon1-1/+1
2015-07-10Add unicode support in url_title functiondimonneon1-2/+2
2015-06-17removed unnecessary change to form_radio, updated docs and added changelog entryAdam Jackett1-2/+0
2015-06-13Fix typo in url_title function description.Michael Foss1-1/+1
2015-06-03made all form helpers consistent regarding extra attributesAdam Jackett1-10/+30
2015-04-14[ci skip] Change Array helpers element(), elements() signaturesAndrey Andreev1-2/+2
Close #3767
2015-04-14Merge pull request #3770 from ftwbzhao/feature/ci/helperAndrey Andreev1-0/+1
[ci skip] plural() support for 'quiz' -> 'quizzes'
2015-04-14[helper]update plural regularftwbzhao1-0/+1
2015-04-12Close #3761Andrey Andreev1-1/+1
2015-02-15add <!DOCTYPE html>Tjoosten1-1/+2
2015-02-05[ci skip] Remove some whitespaceAndrey Andreev1-1/+1
2015-02-05Merge pull request #3562 from avenirer/patch-1Andrey Andreev1-3/+5
Allow not escaping the value in set_value()
2015-02-05Update form_helper.phpAdrian Voicu1-1/+1
2015-02-05Update form_helper.phpAdrian Voicu1-4/+5
2015-02-05Allow not-escaping the value in set_value()Adrian Voicu1-3/+4
Wouldn't it be a good idea to allow for not escaped html in set_value()?
2015-02-04Adjusted returns/return types to suggestionsGabriel Potkány1-5/+5
2015-02-04Fixed inconsistent return typesGabriel Potkány1-1/+1
2015-01-21Remove closing blocks at end of PHP filesvlakoff21-63/+0
2015-01-20Revert 7c4d10660a0a47446474bf97e3cb65f80693f1eeAndrey Andreev1-30/+14
Deprecates form_prep() in favor of html_escape() (again). Related: issue #1953, which was the reason for the reverted commit, but was wrongly interpreted and that shouldn't have happened. Close #2477
2015-01-09Bulk (mostly documentation) updateAndrey Andreev21-63/+63
- Remove PHP version from license notices - Bump year number in copyright notices - Recommend PHP 5.4 or newer to be used - Tell Travis-CI to test on PHP 5.3.0 instead of the latest 5.3 version Related: #3450
2014-12-05removing extra spacesPreetham1-1/+1
Signed-off-by: Preetham <me@preetham.in>