Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2007-06-28 | *Added filename_security() method to Input library | paulburdick | 1 | -0/+50 | |
*Modified the Router so that when Query Strings are Enabled, the controller trigger and function trigger values are sanitized for filename include security. | |||||
2007-06-28 | *Modified the Router so that when Query Strings are Enabled, the controller ↵ | paulburdick | 1 | -3/+4 | |
trigger and function trigger values are sanitized for filename include security. | |||||
2007-06-28 | (no commit message) | paulburdick | 1 | -4/+13 | |
2007-06-28 | Improved XSS clean to not allowing this: | paulburdick | 1 | -4/+12 | |
xss_clean("<x<xss>ss <scr<xss>ipt a='>'>alert/**/('!');//*/</script</script >>"); | |||||
2007-06-26 | (no commit message) | paulburdick | 1 | -1/+1 | |
2007-06-26 | *Updated the XSS Filtering to take into account the IE expression() ability | paulburdick | 1 | -1/+7 | |
2007-06-24 | Modified the is_image() method in the Upload library to take into account ↵ | paulburdick | 1 | -5/+16 | |
Windows IE 6/7 eccentricities when dealing with MIMEs | |||||
2007-06-24 | Fixed the do_xss_clean() method so that if file_get_contents returns FALSE, ↵ | paulburdick | 1 | -1/+1 | |
then we return FALSE... Previously, if it did NOT return FALSE we returned FALSE and that is simply idiotic. | |||||
2007-06-18 | typo in comments | Derek Allard | 1 | -1/+1 | |
2007-06-14 | (no commit message) | Rick Ellis | 1 | -3/+3 | |
2007-06-12 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-12 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-12 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -19/+17 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -2/+2 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -6/+8 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-09 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-09 | (no commit message) | Rick Ellis | 1 | -10/+23 | |
2007-06-09 | (no commit message) | Rick Ellis | 1 | -7/+10 | |
2007-05-24 | typo fix | Derek Allard | 1 | -1/+1 | |
2007-05-04 | Modified XSS Cleaning routine to be more performance friendly and compatible ↵ | Derek Jones | 1 | -8/+47 | |
with PHP 5.2's new PCRE backtrack and recursion limits. - replaced link and image tag javascript sanitization preg_replace()'s with callback functions to avoid excessive backtracks on strings with many links / image tags. | |||||
2007-05-02 | $this->base_url = preg_replace("/(.+?)\/*$/", "\\1/", $this->base_url); | Derek Allard | 1 | -2/+2 | |
changed to $this->base_url = rtrim($this->base_url, '/') .'/'; | |||||
2007-05-02 | // Prep the current page - no funny business! | Derek Allard | 1 | -1/+1 | |
$this->cur_page = preg_replace("/[a-z\-]/", "", $this->cur_page); became // Prep the current page - no funny business! $this->cur_page = (int) $this->cur_page; | |||||
2007-05-01 | fixed a bug in the calendar library | Derek Allard | 1 | -1/+1 | |
2007-04-30 | fixed bug in output | Derek Allard | 1 | -1/+1 | |
2007-04-30 | fixed a typo in rpcs.php library | Derek Allard | 1 | -1/+1 | |
2007-04-27 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-04-27 | modified _add_data() to be compatible with OS X | Derek Jones | 1 | -5/+2 | |
(removed CRC and length from end of file stream) | |||||
2007-04-24 | fixed router but that was ignoring the scaffolding route for optimization | Derek Allard | 1 | -2/+3 | |
2007-04-15 | update pMachine to EllisLab | Derek Allard | 32 | -10784/+10784 | |
update copyright year update Code Igniter to CodeIgniter | |||||
2007-04-10 | typo fix | Derek Allard | 1 | -1/+1 | |
2007-04-03 | array to string addition | Derek Allard | 1 | -202/+212 | |
http://codeigniter.com/forums/viewthread/46994/ | |||||
2007-03-01 | function post() duplicated, changed the second to function get() | Derek Allard | 1 | -1/+1 | |
2007-02-26 | (no commit message) | Rick Ellis | 1 | -1/+73 | |
2007-02-15 | reverted a change user testing revealed a flaw. | Derek Allard | 1 | -1/+4 | |
2007-02-15 | allow for extending models | Derek Allard | 1 | -4/+1 | |
2007-02-14 | fixed an undefined var | Derek Allard | 1 | -0/+2 | |
2007-02-07 | fixed grammer error in show_error message | Derek Allard | 1 | -1/+1 | |
2007-02-06 | Fixed a typo in error message | Derek Allard | 1 | -930/+930 | |
2007-02-05 | (no commit message) | Rick Ellis | 1 | -3/+2 | |
2007-02-05 | (no commit message) | Rick Ellis | 1 | -3/+3 | |
2007-02-01 | fixed resize bug that was comparing height to width instead of height to ↵ | Derek Allard | 1 | -1526/+1526 | |
original height | |||||
2007-02-01 | removed unescaped variable that could be used in XSS | Derek Allard | 2 | -1199/+1199 | |
2007-01-28 | log_exception() printed severity twice... fixed. | Derek Allard | 1 | -169/+169 | |
2007-01-27 | fixed $moble to $mobile | Derek Allard | 1 | -499/+499 | |