Age | Commit message (Expand) | Author | Files | Lines |
---|---|---|---|---|
2015-10-31 | Use proper randomness when generating CAPTCHAs | Andrey Andreev | 1 | -2/+87 |
2015-10-31 | Prevent Host header injections | Andrey Andreev | 1 | -4/+2 |
2015-10-31 | Harden xss_clean() | Andrey Andreev | 1 | -27/+39 |
2015-10-30 | Fix #4192 | Andrey Andreev | 1 | -5/+8 |
2015-10-30 | Fix #3201 | Andrey Andreev | 1 | -1/+6 |
2015-10-19 | Fix #4171 and a number of other transaction bugs | Andrey Andreev | 13 | -354/+162 |
2015-10-19 | Fix #4173 | Andrey Andreev | 1 | -1/+7 |
2015-10-18 | Fix #4179 | Andrey Andreev | 1 | -0/+4 |
2015-10-13 | [ci skip] Fix #4170 | Andrey Andreev | 1 | -3/+1 |
2015-10-12 | [ci skip] This is 3.0.3-dev | Andrey Andreev | 1 | -1/+1 |
2015-10-12 | Optimize csv_from_result speed. | Ahmad Anbar | 1 | -2/+3 |
2015-10-08 | [ci skip] Prepare 3.0.2 release | Andrey Andreev | 1 | -1/+1 |
2015-10-05 | Some more intrusive XSS cleaning | Andrey Andreev | 1 | -5/+11 |
2015-10-05 | Close #4155 | Andrey Andreev | 1 | -1/+1 |
2015-10-02 | More XSS stuff | Andrey Andreev | 1 | -1/+1 |
2015-09-29 | Merge pull request #4126 from zoaked/patch-1 | Andrey Andreev | 1 | -1/+0 |
2015-09-24 | Fix #4137 | Andrey Andreev | 1 | -1/+1 |
2015-09-21 | More XSS stuff | Andrey Andreev | 1 | -3/+3 |
2015-09-17 | Don't allow open-ended tags to pass through xss_clean() | Andrey Andreev | 1 | -4/+9 |
2015-09-17 | Refactor 'evil attributes' sanitization logic | Andrey Andreev | 1 | -92/+66 |
2015-09-16 | Fix #4116 | Andrey Andreev | 1 | -6/+6 |
2015-09-16 | Fix #4120 | Andrey Andreev | 1 | -3/+13 |
2015-09-15 | Missing character in the evil attributes pattern | Andrey Andreev | 1 | -1/+1 |
2015-09-14 | Another addition to tag detection patterns in xss_clean() | Andrey Andreev | 1 | -1/+4 |
2015-09-14 | Close #4098 | Andrey Andreev | 1 | -2/+18 |
2015-09-14 | Fix #4032 | Andrey Andreev | 1 | -5/+8 |
2015-09-14 | Fix #4044 | Andrey Andreev | 1 | -5/+5 |
2015-09-14 | Fix #4109 | Andrey Andreev | 1 | -20/+22 |
2015-09-14 | Add 'eval' to a JS blacklist in xss_clean() | Andrey Andreev | 1 | -7/+10 |
2015-09-14 | Move _remove_evil_attributes() call | Andrey Andreev | 1 | -4/+3 |
2015-09-11 | Harden xss_clean() more | Andrey Andreev | 1 | -5/+37 |
2015-09-11 | Improve on previous commit | Andrey Andreev | 1 | -1/+1 |
2015-09-11 | Replace the latest XSS patches | Andrey Andreev | 1 | -9/+21 |
2015-09-10 | Last commit didn't adjust a RE index | Andrey Andreev | 1 | -1/+1 |
2015-09-10 | Fix & extend 700619cebf75c4e4fcda6a2d7bea1afb84a029e4 | Andrey Andreev | 1 | -2/+2 |
2015-09-10 | Change form validation library to allow the pipe character within square brac... | rich | 1 | -1/+1 |
2015-09-10 | Fix #4106 | Andrey Andreev | 1 | -2/+2 |
2015-09-07 | Remove unnecessary count() calls from _sanitize_globals() | Andrey Andreev | 1 | -3/+3 |
2015-09-07 | Move csrf_verify() call out of _sanitize_globals() | Andrey Andreev | 1 | -6/+6 |
2015-09-03 | Fix #4096 | Andrey Andreev | 1 | -1/+1 |
2015-09-01 | Fix #4093 | Andrey Andreev | 1 | -1/+1 |
2015-09-01 | There was an extra = sign in this file | Marco Monteiro | 1 | -1/+1 |
2015-08-31 | [ci skip] Fix #4091 | Andrey Andreev | 1 | -1/+1 |
2015-08-31 | Fix #4086 | Andrey Andreev | 1 | -13/+13 |
2015-08-31 | Fix #4073 | Andrey Andreev | 1 | -7/+16 |
2015-08-31 | Fix #4066 | Andrey Andreev | 2 | -18/+6 |
2015-08-20 | Fix #4065 | Andrey Andreev | 1 | -1/+1 |
2015-08-19 | [ci skip] Fix 'sqlsrv' connect failure endless loop | Andrey Andreev | 1 | -7/+8 |
2015-08-17 | Allow capitals in the middle of model names | Andrey Andreev | 1 | -1/+1 |
2015-08-15 | Fix #4056 | Andrey Andreev | 1 | -1/+1 |