summaryrefslogtreecommitdiffstats
path: root/system/libraries/Upload.php
AgeCommit message (Collapse)AuthorFilesLines
2011-10-27Added _file_mime_type() method to system/libraries/Upload.php in order to ↵Andrey Andreev1-2/+66
fix a possible MIME-type injection (issue #60)
2011-07-02backed out 648b42a75739, which was a NON-trivial whitespace commit. It ↵Derek Jones1-14/+14
broke the Typography class's string replacements, for instance
2011-04-25Fixed double-space typo.Razican1-14/+14
2011-04-19Removing internal references to the EXT constant. Additionally, marked the ↵Greg Aker1-4/+4
constant as deprecated. Use ".php" instead. Also adding upgrade notes from 2.0.2 to 2.0.3.
2011-04-06Made Environment Support optional. Comment out or delete the constant to ↵Phil Sturgeon1-6/+0
stop environment checks.
2011-04-06Made Environment Support optional. Comment out or delete the constant to ↵Phil Sturgeon1-1/+1
stop environment checks.
2011-04-05Removing security loading calls.Pascal Kriete1-6/+0
2011-03-22Fixed logic and removed the error supressingEric Barnes1-8/+9
2011-03-18Fixed coding to match standards from previous releasesEric Barnes1-3/+3
2011-03-17load config files from environment specific locations in core classes, ↵bubbafoley1-1/+10
helpers and libraries
2011-03-15Fixed upload issue reported by Valhallen and fixed by bubbafoley.Phil Sturgeon1-1/+1
2011-02-16Merged CodeIgniter Core changes and integrated rob1's secure cookie change ↵Phil Sturgeon1-1/+12
into my secure cookie change.
2011-02-14Whitespace cleanup in libraries/Pascal Kriete1-1/+1
2011-01-30Filemanger stuff and nuked a persisting flash cookie on login.Robin Sowell1-1/+2
2011-01-27Automated merge with https://bitbucket.org/ellislab/codeigniterPhil Sturgeon1-1/+12
2011-01-05Hey look, it's 2011Greg Aker1-1/+1
2010-12-15Upload library file_name can now be set without an extension, the extension ↵Phil Sturgeon1-1/+12
will be taken from the uploaded file instead of the given name.
2010-11-10setting var/function visibility in the UPload classGreg Aker1-80/+54
2010-11-10Updating PHP requirements in files 5.1.6Greg Aker1-1/+1
2010-10-04Cleanup of stray spaces and tabsBarry Mieny1-149/+149
2010-08-11undoing mistaken changes in rev 8c54b3b0402fDerek Jones1-3/+0
2010-08-11removed redundant upload lang file, after lang name changs, it was blocking ↵Derek Jones1-0/+3
the CI lang file from loading. Fixes #473
2010-07-22Fixed a bug in the Upload class where a PHP error could occur when wildcards ↵Greg Aker1-2/+2
were used as the allowed_types.
2010-07-12201007 file upload bug fixDerek Jones1-85/+109
2010-06-09Fixed an undefined variable PHP error in the do_xss_clean() method of the ↵Greg Aker1-7/+7
Upload library.
2010-04-26fixed errant syntax in changeset 53ace78c4b45, fixes #37Derek Jones1-1/+1
2010-04-26fixed errant syntax in changeset 53ace78c4b45, fixes #37Derek Jones1-1/+1
2010-04-23ensured the security lib was loaded in a few calls to xss_clean() in other ↵Derek Jones1-1/+6
libraries. Fixes #35
2010-04-22reapplied strtolower() to ->file_type from philsturgeon's changeset ↵Derek Jones1-1/+1
5fe3b04bdf44 to standardize input
2010-04-22Some mime types are wrapped with " which breaks file type checking. This ↵Phil Sturgeon1-1/+1
will remove any wrapping \ and "
2010-04-22tiny modification to whitespace from philsturgeon's bugfix to match CI style ↵Derek Jones1-1/+1
guidelines
2010-04-22Fixed Upload bug that would break when files and images were both included ↵Phil Sturgeon1-1/+1
on an allowed filetype list in the wrong order: http://codeigniter.com/bug_tracker/bug/11552/
2010-04-15Update to File Upload library to return boolean on do_xss_clean().Greg Aker1-13/+48
2010-03-03updating Upload features and use of security libraryDerek Jones1-1/+11
2010-01-05updated copyrightsDerek Jones1-1/+1
2009-04-22updated copyrights to 2009Derek Jones1-1/+1
2009-02-18added a missing bracketDerek Allard1-1/+1
2009-02-16Added the ability to pass $config['file_name'] for the File Uploading Class ↵Derek Allard1-3/+4
and rename the uploaded file.
2009-02-16changes to allow file name changing in upload, extension preservedDerek Allard1-2/+8
2009-02-15experimental rename upload fileDerek Allard1-1/+1
2009-02-10added sanity check for images in is_allowed_filetype() using getimagesize()Derek Jones1-2/+13
2008-11-13Changing EOL style to LFDerek Allard1-930/+930
2008-10-04removed some ereg() calls for better performanceRick Ellis1-4/+4
2008-10-04Tweaked the last feature added to limit file name lengthRick Ellis1-0/+1
2008-10-04Added function to optionally limit the length of the file nameRick Ellis1-3/+54
2008-09-13updated copyrightRick Ellis1-1/+1
2008-08-21whitespace fixesDerek Allard1-1/+1
a minor re-ordering of the changelog
2008-07-13removed unnecessary foreach() loop for a str_replace()Derek Jones1-4/+1
2008-05-14Set the mime type check in the Upload class to reference the global mimes ↵Derek Allard1-1/+3
variable.
2008-05-13Some sweeping syntax changes for consistency:Derek Jones1-25/+25
(! foo) changed to ( ! foo) || changed to OR changed newline standardization code in various places from preg_replace to str_replace