Age | Commit message (Collapse) | Author | Files | Lines |
|
servers.
|
|
|
|
|
|
|
|
in xss_clean()
|
|
chmod operations on files were using the DIR_ constant permisisons
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1.6 EE bug fix- carried over.
|
|
|
|
|
|
Added set_status_header() to the Common functions to allow use when the Output class is unavailable.
Fixed a bug where the 400 status header sent with the 'disallowed URI characters' was not compatible with CGI environments.
|
|
|
|
replacement
|
|
working (#6110)
|
|
array since it's accessed later without changing the type's casing anyway
|
|
|
|
content so Output class does not muck with it
|
|
php.ini's disable_functions. $fp cannot be trusted on those retarded servers
|
|
|
|
|
|
|
|
contains index.php as part of the path.
|
|
calcluated incorrectly
|
|
|
|
|
|
|
|
the general session data
|
|
|
|
and rename the uploaded file.
|
|
|
|
|
|
http://codeigniter.com/bug_tracker/bug/6500/
|
|
$this->newline is fully stripped when the "mail" protocol is used, regardless of whether \r, \n, or \r\n is used.
http://codeigniter.com/bug_tracker/bug/6669/
|
|
|
|
eval(), plugging an arbitrary script execution hole
http://codeigniter.com/bug_tracker/bug/6068/
|
|
between multipart headers and the ignored MIME message area
http://codeigniter.com/bug_tracker/bug/6681/
|
|
without the controller name in the URL
http://codeigniter.com/bug_tracker/bug/6517/
|
|
|
|
|
|
|
|
HTTP_X_FORWARDED_FOR header safely to determine the visitor's IP address
|
|
|
|
|
|
immediately followed by another tag.
|