Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2010-07-26 | separated the CSRF cookie name from the token, forced new token on ↵ | Derek Jones | 1 | -14/+15 | |
successful POST | |||||
2010-07-22 | Adding CSRF into config | Derek Allard | 1 | -5/+11 | |
Adding CSRF token into form open() | |||||
2010-04-15 | Fixing a bug where odbc/mssql/oci8 db drivers would encounter a PHP error ↵ | Greg Aker | 1 | -40/+2 | |
due to a function being moved from the input to security class. Moving remove_invisible_characters() to Common.php so the entire class does not need to be instantiated in those database drivers. | |||||
2010-03-30 | moved entity_decode() to the Security library to handle an issue with HTML ↵ | Derek Jones | 1 | -3/+52 | |
in input when the global XSS filter is enabled | |||||
2010-03-03 | added Security library | Derek Jones | 1 | -0/+710 | |