Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2012-07-31 | Fix warning by profiler when userdata has objects | Raul Baldner junior | 1 | -1/+1 | |
If session data has objects and profiler is enabled, a warning is trown: > A PHP Error was encountered > Severity: Warning > Message: htmlspecialchars() expects parameter 1 to be string, object given > Filename: libraries/Profiler.php > Line Number: 514 | |||||
2012-07-24 | Change is_loaded() to return a reference | Andrey Andreev | 1 | -1/+1 | |
2012-07-18 | Backport fix for issue #1314 | Andrey Andreev | 1 | -2/+5 | |
2012-07-09 | Alter CI_DB_pdo_result::num_rows() | Andrey Andreev | 1 | -11/+12 | |
2012-07-04 | Backport CI_Config::load() optimization from pull #1571 | Andrey Andreev | 1 | -6/+6 | |
2012-07-02 | Fix issue #1543 | Andrey Andreev | 1 | -6/+5 | |
2012-06-29 | Bumping version number to 2.1.2. | Wes Baker | 5 | -5/+5 | |
2012-06-29 | Updating XSS cleaning to better handle base64 encoded attributes. | Wes Baker | 1 | -70/+81 | |
Conflicts: system/core/Security.php | |||||
2012-06-13 | Revert a preg_replace() | Andrey Andreev | 1 | -1/+1 | |
2012-06-13 | Switch strstr() arguments | Andrey Andreev | 1 | -1/+1 | |
2012-06-13 | Fixed conflicts between git flow 2.1.1 and non-flow 2.1.1 | Phil Sturgeon | 13 | -13/+13 | |
2012-06-13 | Revert from() alias escaping fix - it was breaking more stuff | Andrey Andreev | 1 | -5/+3 | |
2012-06-11 | Fixed conflicts | Phil Sturgeon | 8 | -33/+187 | |
Why were there conflicts merging into master? | |||||
2012-06-07 | Revert a change | Andrey Andreev | 1 | -1/+1 | |
2012-06-07 | Fixed valid_ip() for PHP < 5.2 | Andrey Andreev | 1 | -22/+21 | |
2012-06-07 | Adding IPv6 support to the Input and Form_validation libraries. | Pascal Kriete | 2 | -5/+134 | |
2012-05-27 | Merge branch '2.1-stable' of github.com:EllisLab/CodeIgniter into 2.1-stable | Phil Sturgeon | 1 | -1/+1 | |
2012-05-27 | Driver_Library had $lib_name set as static, and used non-static | Phil Sturgeon | 1 | -1/+1 | |
2012-05-27 | Fix an erroneus method name | Andrey Andreev | 1 | -1/+1 | |
2012-05-24 | Fix issue #1387 | Andrey Andreev | 2 | -12/+14 | |
2012-05-24 | Adding width and height to list of clear variables to fix #1059 | Jamie Hurst | 1 | -1/+1 | |
2012-05-23 | Added ability to _like paramater side to use 'none', in case one wants to ↵ | Nithin | 1 | -2/+6 | |
query like instead of where without case being sensitive | |||||
2012-05-19 | Fix a issue with CI_DB_pdo_result::num_rows() | Rogerio Prado de Jesus | 1 | -1/+12 | |
In case of SELECT queries PDOStatement::rowCount doesn't work as expected. This commit makes it returns the expected value. | |||||
2012-05-19 | Fix a issue with affect_rows in CI_DB_pdo_driver::_execute() | Rogerio Prado de Jesus | 1 | -2/+11 | |
In case of SELECT queries PDOStatement::rowCount doesn't work as expected. This commit makes affect_rows be initialized properly. Signed-off-by: Rogerio Prado de Jesus <rogeriopradoj@gmail.com> | |||||
2012-05-19 | Fix issue #726 | Andrey Andreev | 1 | -8/+8 | |
2012-05-17 | Added upgrade for 2.1.1 and updated version. | Phil Sturgeon | 13 | -13/+13 | |
2012-05-17 | Merge pull request #1366 from aphofstede/2.1-stable | Andrey Andreev | 1 | -1/+1 | |
Check cookie against md5 regex. 2.1 stable CSRF injection security fix | |||||
2012-05-17 | Check cookie against md5 regex. | Alexander Hofstede | 1 | -1/+1 | |
Otherwise, cookie can contain arbitrary injected code that gets sent back directly to the browser. | |||||
2012-05-07 | Added a return false if an image doesn't pass XSS cleaning to prevent ↵ | Wes Baker | 1 | -0/+4 | |
file_get_contents from returning a NULL and passing through unscathed. | |||||
2012-04-23 | Corrected the migration_missing_down_method language string | Repox | 1 | -1/+1 | |
2012-03-04 | Merge pull request #1116 from tubalmartin/helpers|url|2.1-stable | Phil Sturgeon | 1 | -20/+16 | |
2.1 stable - An improved url_title helper function | |||||
2012-03-04 | Allow developers to use any string as a separator, not just dashes or ↵ | tubalmartin | 1 | -10/+19 | |
underscores. Backwards compatible when using 'dash' or 'underscore' as string separator. Tests: http://codepad.org/DWcxVH5r | |||||
2012-03-03 | Fixed a bug - CI_Upload::_file_mime_type() could've failed if popen() is ↵ | tubalmartin | 1 | -1/+1 | |
used for the detection. | |||||
2012-03-03 | An even better url_title helper. Tests: http://codepad.org/tuJgvkyN | tubalmartin | 1 | -20/+7 | |
Changelog entry added for 2.1.1 | |||||
2012-03-01 | compile binds before caching the query, otherwise the cached query will ↵ | Ryan Dial | 1 | -6/+6 | |
never match the unbound query. updated changlog to mention bug fix. | |||||
2012-02-12 | Merge pull request #757 from narfbg/2.1-stable | Phil Sturgeon | 1 | -24/+78 | |
Improve CI_Upload::_file_mime_type() realiability (2.1-stable) | |||||
2011-12-26 | Merge pull request #709 from tubalmartin/2.1-stable | Phil Sturgeon | 1 | -0/+14 | |
2.1.0 - Fatal error: Call to undefined method CI_DB_Driver::_reset_select() | |||||
2011-12-15 | Merge remote-tracking branch 'upstream/2.1-stable' into 2.1-stable | Andrey Andreev | 1 | -1/+1 | |
2011-12-13 | Tweak MIME regular expression check again | Andrey Andreev | 1 | -1/+1 | |
2011-12-11 | Fix regular expression for validating MIME type string | Andrey Andreev | 1 | -1/+1 | |
2011-12-11 | Fix for Issue #538. | Andrew Mackrodt | 1 | -1/+1 | |
2011-12-09 | Improve CI_Upload::_file_mime_type() | Andrey Andreev | 1 | -24/+78 | |
2011-12-02 | Update a comment, just to be clearer | Andrey Andreev | 1 | -1/+1 | |
2011-12-02 | Hotfix for a file type detection bug in the Upload library | Andrey Andreev | 1 | -2/+5 | |
2011-12-01 | This fixes issue #725 | Repox | 1 | -2/+8 | |
2011-11-24 | Changed form_open() to compare $action against base_url() | John Nicely | 1 | -1/+1 | |
Checking for strpos($action, $CI->config->site_url()) === FALSE causes CSRF token to not be added in form_open() output. When site_url()'s first parameter ($uri) is empty, site_url's return value is the base URL plus the $CI->config->item('index_page') value. form_open() and CodeIgniter's URI routing do not require index.php to be in the URL, so any call to form_open() in which the $action parameter does not have index.php will always return false for the strpos() call. | |||||
2011-11-24 | Added dummy _reset_select() method to CI_DB_Driver class to allow Active ↵ | Túbal Martín | 1 | -0/+14 | |
Record class to be disabled. Otherwise a fatal error is triggered. | |||||
2011-11-23 | tmp_path does not exists, should be tmp_name | Michiel Vugteveen | 1 | -1/+1 | |
2011-11-22 | Readded PDO drivers. | Phil Sturgeon | 5 | -15/+565 | |
2011-11-14 | Tweaking the xss filter for IE <comment> tags, parameter injection, and ↵ | Pascal Kriete | 1 | -50/+41 | |
weird html5 attributes. |