Age | Commit message (Collapse) | Author | Files | Lines |
|
on an allowed filetype list in the wrong order: http://codeigniter.com/bug_tracker/bug/11552/
|
|
to return only the javascript with no script tags.
|
|
error. Not noted in changelog, as I figure it's covered by the original note about adding xss clean at all.
|
|
|
|
due to a function being moved from the input to security class.
Moving remove_invisible_characters() to Common.php so the entire class does not need to be instantiated in those database drivers.
|
|
|
|
Form_validation going forward!
Removed references to the validation classes documentation page in the changelog as well.
|
|
enabled.
|
|
filemtime() for dates.
|
|
http://codeigniter.com/bug_tracker/bug/11556/
|
|
|
|
in input when the global XSS filter is enabled
|
|
|
|
the Session class
|
|
names to ensure compatibility on case sensitive file systems.
|
|
|
|
access if installed in web root
|
|
|
|
to a fatal PHP error.
|
|
proposed in 2007, can we add it now pleeeeease?
|
|
|
|
used. That would really mess up itunes://, spotify://, telnet://, etc.
|
|
in) instead of always looking in libraries. Makes more sense to have them in the same folder wether in system or application.
|
|
is_really_writable() on each page request unless it is_really_needed()
|
|
creation dates of 1980. Hat tip to JMous for a suggested fix on the forums.
|
|
to mirror EE2.
|
|
over the use of the Security library's xss_clean() method.
|
|
|
|
|
|
|
|
application folder
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
calendars
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|