summaryrefslogtreecommitdiffstats
path: root/system/helpers
AgeCommit message (Collapse)AuthorFilesLines
2015-10-05Close #4155Andrey Andreev1-1/+1
2015-08-07Fix #4023Andrey Andreev1-1/+1
Close #4024
2015-08-07Fix ReDoS-bug in string_helper.phpKevin Morssink1-1/+1
Fix for ReDoS (Regular Expression Denial of Service) / Code Injection Risk
2015-07-24Fixed typosCalvin Tam2-2/+2
2015-07-23Update path_helper.phprajatsharma941-1/+1
2015-07-23Security check updated.rajatsharma941-1/+1
All security check conditions are modified according to CI styleguide.
2015-07-23Update path_helper.phprajatsharma941-1/+1
2015-07-23IP checking false positives and no ipv6 checkrajatsharma941-1/+1
The currently implemented method marks all IPs between 0.0.0.0 - 999.999.999.999 as valid IP Address. Which generates false positives as any IP after 255.255.255.255 is not a valid IP address. Also, there is no check for IPv6 IP addresses. filter_var() solves both the issues.
2015-07-23IP Address checking generates false positives.medhavini1-1/+1
IP Address checking marks all IPs between 0.0.0.0 - 999.999.999.999 as valid IP Address. Which is not true.
2015-07-20Failed security checkrajatsharma941-2/+1
The implemented security check to make sure the path is NOT a URL can easily be bypassed (gives false negative) for all subdomains. Eg "subdomain.domain.com" should ideally show an error but it does not. The new security check tries to make a fsockopen connection to validate whether the URL is external or not.
2015-07-20Security check failmedhavini1-0/+1
Security check condition to check that the path is NOT a URL may give false negative in case of subdomains. Where URLs don't start with http or www.
2015-07-17[ci skip] Fix #3778Andrey Andreev1-15/+6
2015-07-15Polish changes from PR #3893Andrey Andreev1-24/+13
2015-07-15Merge branch 'feature/form_helper' of github.com:darkhouse/CodeIgniter into ↵Andrey Andreev1-10/+28
feature/form_helpers_extra_array Manually fixed conflicts in: user_guide_src/source/changelog.rst
2015-07-13Add check for PCRE UTF-8 supportdimonneon1-1/+1
2015-07-10Add unicode support in url_title functiondimonneon1-2/+2
2015-06-17removed unnecessary change to form_radio, updated docs and added changelog entryAdam Jackett1-2/+0
2015-06-13Fix typo in url_title function description.Michael Foss1-1/+1
2015-06-03made all form helpers consistent regarding extra attributesAdam Jackett1-10/+30
2015-04-14[ci skip] Change Array helpers element(), elements() signaturesAndrey Andreev1-2/+2
Close #3767
2015-04-14Merge pull request #3770 from ftwbzhao/feature/ci/helperAndrey Andreev1-0/+1
[ci skip] plural() support for 'quiz' -> 'quizzes'
2015-04-14[helper]update plural regularftwbzhao1-0/+1
2015-04-12Close #3761Andrey Andreev1-1/+1
2015-02-15add <!DOCTYPE html>Tjoosten1-1/+2
2015-02-05[ci skip] Remove some whitespaceAndrey Andreev1-1/+1
2015-02-05Merge pull request #3562 from avenirer/patch-1Andrey Andreev1-3/+5
Allow not escaping the value in set_value()
2015-02-05Update form_helper.phpAdrian Voicu1-1/+1
2015-02-05Update form_helper.phpAdrian Voicu1-4/+5
2015-02-05Allow not-escaping the value in set_value()Adrian Voicu1-3/+4
Wouldn't it be a good idea to allow for not escaped html in set_value()?
2015-02-04Adjusted returns/return types to suggestionsGabriel Potkány1-5/+5
2015-02-04Fixed inconsistent return typesGabriel Potkány1-1/+1
2015-01-21Remove closing blocks at end of PHP filesvlakoff21-63/+0
2015-01-20Revert 7c4d10660a0a47446474bf97e3cb65f80693f1eeAndrey Andreev1-30/+14
Deprecates form_prep() in favor of html_escape() (again). Related: issue #1953, which was the reason for the reverted commit, but was wrongly interpreted and that shouldn't have happened. Close #2477
2015-01-09Bulk (mostly documentation) updateAndrey Andreev21-63/+63
- Remove PHP version from license notices - Bump year number in copyright notices - Recommend PHP 5.4 or newer to be used - Tell Travis-CI to test on PHP 5.3.0 instead of the latest 5.3 version Related: #3450
2014-12-05removing extra spacesPreetham1-1/+1
Signed-off-by: Preetham <me@preetham.in>
2014-12-05Removed img_name from captcha helperPreetham1-2/+1
Signed-off-by: Preetham <me@preetham.in>
2014-12-05closing #51. Added img_id and img_name in capcha helperPreetham1-1/+3
Signed-off-by: Preetham <me@preetham.in>
2014-12-04[ci skip] Update on the changes from PR #3388Andrey Andreev1-2/+2
- Fixed a broken link - Added missing notes about deprecations in the upgrade instructions - Improved consistency with other deprecation notices in the docs
2014-12-04Flag the smiley helper and shopping cart as deprecated.James L Parry1-1/+2
They should be removed the next minor release. Lowered the "javascript" deprecation message to "important" instead of "warning", for consistency with the rest of CI. Signed-off-by:James L Parry <jim_parry@bcit.ca>
2014-11-23Fix an erroneous variable nameAndrey Andreev1-1/+1
Close #3356 Close #3367
2014-11-12removed additional tabs and semicolonPreetham1-2/+2
Signed-off-by: Preetham <me@preetham.in>
2014-11-12 Closing #656 and updating documentationPreetham1-3/+3
Signed-off-by: Preetham <me@preetham.in>
2014-11-12Fix #656 add font_size in create_captcha()Preetham1-2/+3
2014-10-27[ci skip] Switch to MIT license; close #3293Andrey Andreev21-294/+525
2014-09-28[ci skip] Remove references to 'PHP5' from commentsAndrey Andreev1-1/+1
2014-08-10Polish changes following PR #3173Andrey Andreev1-4/+4
2014-08-08Using ImagePNG in CAPTCHA helperET-NiK1-2/+16
Using ImagePNG function, if ImageJPG not exists
2014-07-31Last empty line removeMian Saleem1-1/+1
2014-07-31Update url_helper.phpMian Saleem1-1/+1
2014-07-31anchor popup attribute missingMian Saleem1-2/+2
Please add the menubar attribute to anchor popup