Age | Commit message (Collapse) | Author | Files | Lines |
|
data is stored to the DB rather then the cookie.
|
|
|
|
|
|
and added the id "codeigniter_profiler" to the container div
|
|
ampersand before forcing a semi-colon
|
|
|
|
|
|
|
|
and tab characters at the end of a line of quoted-printable encoded content
|
|
|
|
which were mistakenly pulled out in a previous commit, not released
|
|
false positive matches
|
|
such as locatiON, cONtent, etc.
|
|
|
|
rawurldecode() the string, there's no need to go looking for url encoded characters here
|
|
helper (hotfix for 1.6.3)
|
|
directory.
|
|
|
|
comparison
|
|
that using xss_clean() on image files might trigger
|
|
|
|
the Language class.
|
|
Documented get() in the Input class.
|
|
|
|
changed to FALSE
|
|
|
|
|
|
|
|
|
|
|
|
with (and require users to do the same) with a blacklist.
|
|
handlers for removal
|
|
Removed some unused variables from the code (#4563).
Fixed a bug where having() was not adding an = into the statement (#4568).
|
|
entities and href=data:url exploits
|
|
|
|
detected or explicitly declared.
|
|
HTML tags, and the HTML5 event handlers onerror and onended
|
|
tiny memory and speed improvement.
|
|
|
|
sent with utf-7 encoding
|
|
vectors particular to the Opera family of browsers
|
|
variable.
|
|
|
|
You're coming with me, pal!
|
|
_sanitize_naughty_html() callback and removed "never allowed" items to a class property
|
|
|
|
(! foo) changed to ( ! foo)
|| changed to OR
changed newline standardization code in various places from preg_replace to str_replace
|
|
short_open_tag disabled with the new change of removing closing PHP tags from files
|
|
|
|
|