summaryrefslogtreecommitdiffstats
path: root/system
AgeCommit message (Collapse)AuthorFilesLines
2013-10-18Style correctionblowdoof1-6/+6
2013-10-18Fix on sqlsrv_forge drop_tabletino1-1/+8
2013-10-18Bugfix on truncate commandtino1-1/+1
2013-08-05Suhosin compatible emailsPlamenVasilev1-4/+4
Fix problems with Suhosin and sending emails trough php mail()
2013-07-08Revert "Updating User Guide for 2.1.4."Wes Baker1-1/+1
This reverts commit c5f99fdcc5c4a918b5b8fe3ddbd56ab25ad1c22b. Signed-off-by: Wes Baker <wes@wesbaker.com>
2013-07-08Updating User Guide for 2.1.4.Wes Baker2-2/+2
2013-07-05Added small improvement to the _remove_evil_attributes functionbrian9781-7/+6
Signed-off-by: brian978 <dbrian89@yahoo.com> Signed-off-by: Wes Baker <wes@wesbaker.com> Conflicts: system/core/Security.php
2013-03-15Email library: htmlspecialchars for _header_strmoi901-1/+1
2012-11-05Error on line 1407 of db_active_rec.php traces to mis-named variablesPatrick Zeinert1-1/+1
Corrected variables to $k2 and $v2
2012-10-28Fix language typo in Migrations libraryMichael Brooks1-1/+1
lang and line were out of order
2012-10-08Really fix #1715Andrey Andreev1-1/+1
2012-10-08Fix issue #1715Andrey Andreev1-4/+4
2012-10-07Bump version number to 2.1.3Andrey Andreev2-3/+3
2012-10-06Backport security fixesAndrey Andreev1-26/+25
2012-10-06Fix issues #227 and #907Andrey Andreev1-32/+31
2012-10-04Backport fix for issue #1699Andrey Andreev1-21/+11
2012-09-05Backport a fix for oci8_result::num_rows()Andrey Andreev1-6/+4
2012-08-01Style fix and changelog entry for pull #1675Andrey Andreev1-1/+1
2012-07-31Fix warning by profiler when userdata has objectsRaul Baldner junior1-1/+1
If session data has objects and profiler is enabled, a warning is trown: > A PHP Error was encountered > Severity: Warning > Message: htmlspecialchars() expects parameter 1 to be string, object given > Filename: libraries/Profiler.php > Line Number: 514
2012-07-24Change is_loaded() to return a referenceAndrey Andreev1-1/+1
2012-07-18Backport fix for issue #1314Andrey Andreev1-2/+5
2012-07-09Alter CI_DB_pdo_result::num_rows()Andrey Andreev1-11/+12
2012-07-04Backport CI_Config::load() optimization from pull #1571Andrey Andreev1-6/+6
2012-07-02Fix issue #1543Andrey Andreev1-6/+5
2012-06-29Bumping version number to 2.1.2.Wes Baker5-5/+5
2012-06-29Updating XSS cleaning to better handle base64 encoded attributes.Wes Baker1-70/+81
Conflicts: system/core/Security.php
2012-06-13Revert a preg_replace()Andrey Andreev1-1/+1
2012-06-13Switch strstr() argumentsAndrey Andreev1-1/+1
2012-06-13Fixed conflicts between git flow 2.1.1 and non-flow 2.1.1Phil Sturgeon13-13/+13
2012-06-13Revert from() alias escaping fix - it was breaking more stuffAndrey Andreev1-5/+3
2012-06-11Fixed conflictsPhil Sturgeon8-33/+187
Why were there conflicts merging into master?
2012-06-07Revert a changeAndrey Andreev1-1/+1
2012-06-07Fixed valid_ip() for PHP < 5.2Andrey Andreev1-22/+21
2012-06-07Adding IPv6 support to the Input and Form_validation libraries.Pascal Kriete2-5/+134
2012-05-27Merge branch '2.1-stable' of github.com:EllisLab/CodeIgniter into 2.1-stablePhil Sturgeon1-1/+1
2012-05-27Driver_Library had $lib_name set as static, and used non-staticPhil Sturgeon1-1/+1
2012-05-27Fix an erroneus method nameAndrey Andreev1-1/+1
2012-05-24Fix issue #1387Andrey Andreev2-12/+14
2012-05-24Adding width and height to list of clear variables to fix #1059Jamie Hurst1-1/+1
2012-05-23Added ability to _like paramater side to use 'none', in case one wants to ↵Nithin1-2/+6
query like instead of where without case being sensitive
2012-05-19Fix a issue with CI_DB_pdo_result::num_rows()Rogerio Prado de Jesus1-1/+12
In case of SELECT queries PDOStatement::rowCount doesn't work as expected. This commit makes it returns the expected value.
2012-05-19Fix a issue with affect_rows in CI_DB_pdo_driver::_execute()Rogerio Prado de Jesus1-2/+11
In case of SELECT queries PDOStatement::rowCount doesn't work as expected. This commit makes affect_rows be initialized properly. Signed-off-by: Rogerio Prado de Jesus <rogeriopradoj@gmail.com>
2012-05-19Fix issue #726Andrey Andreev1-8/+8
2012-05-17Added upgrade for 2.1.1 and updated version.Phil Sturgeon13-13/+13
2012-05-17Merge pull request #1366 from aphofstede/2.1-stableAndrey Andreev1-1/+1
Check cookie against md5 regex. 2.1 stable CSRF injection security fix
2012-05-17Check cookie against md5 regex.Alexander Hofstede1-1/+1
Otherwise, cookie can contain arbitrary injected code that gets sent back directly to the browser.
2012-05-07Added a return false if an image doesn't pass XSS cleaning to prevent ↵Wes Baker1-0/+4
file_get_contents from returning a NULL and passing through unscathed.
2012-04-23Corrected the migration_missing_down_method language stringRepox1-1/+1
2012-03-04Merge pull request #1116 from tubalmartin/helpers|url|2.1-stablePhil Sturgeon1-20/+16
2.1 stable - An improved url_title helper function
2012-03-04Allow developers to use any string as a separator, not just dashes or ↵tubalmartin1-10/+19
underscores. Backwards compatible when using 'dash' or 'underscore' as string separator. Tests: http://codepad.org/DWcxVH5r