summaryrefslogtreecommitdiffstats
path: root/system
AgeCommit message (Collapse)AuthorFilesLines
2014-05-06xss_clean is not protecting GET requests that &item=/startwithslashDocumentopia.com1-1/+1
/webacd.do?isurlact=true&entactname=/webacd.do becomes /webacd.do?isurlact=true&entactname;=/webacd.do This commit adds / to the regex to it will escape those GET requests related to issue #3030
2014-05-01Fix a typoAndrey Andreev1-1/+1
2014-05-01Merge pull request #3027 from abdmaster/fix/db_transaction_failureAndrey Andreev1-0/+9
Added `_trans_failure` property to fix PHP Warning.
2014-05-01Optimization in CI_URI::_set_uri_string()Andrey Andreev1-1/+1
2014-05-01Fix docblock of URI->rsegments propertyvlakoff1-1/+3
2014-04-30Added `_trans_failure` property to fix PHP Warning.Ahmedul Haque Abid1-0/+9
2014-04-29Merge branch 'develop' of github.com:EllisLab/CodeIgniter into developAndrey Andreev3-3/+3
2014-04-29Small fixes (PR #3022)Andrey Andreev2-3/+3
- Fix incorrect variable in mb_strlen() compat - Micro-optimization of array_replace(), array_replace_recursive() compat
2014-04-25Minor fixesvlakoff3-3/+3
2014-04-15Merge pull request #3006 from vlakoff/securityAndrey Andreev1-1/+1
Fix in $_protected array of register_globals security procedure
2014-04-15#3005Andrey Andreev1-2/+1
2014-04-15Fix in $_protected array of register_globals security procedurevlakoff1-1/+1
* Followup to b78a8c7d40446a3e2e36772706662fd033fe7d1d * Just FYI, renamed to "system_path" in 0c1e405437ceb3c1888e151e6a400653310ad6c1
2014-04-15Fix #3004Andrey Andreev2-53/+52
2014-04-15Follow-up to aeed15eb8556ab671507f17ef9a8cf28903999aaAndrey Andreev1-1/+1
2014-04-14Different method for handling "error_views_path" config itemvlakoff1-15/+10
2014-04-14Rename config item "error_templates_path" to "error_views_path"vlakoff1-2/+2
2014-04-12Make the error templates path configurablevlakoff1-2/+15
2014-04-09Really fix #2997Andrey Andreev1-1/+1
2014-04-09Removed BOMEtki1-1/+1
2014-04-09MicrofixEtki1-7/+1
cleaned `return true; return true;` construction
2014-04-09Issue/PR #2997Andrey Andreev1-1/+1
2014-04-09Minor changes in FV, TrackbackAndrey Andreev3-47/+32
2014-04-05Remove default parameter value of is_php()vlakoff1-2/+2
It was simply pointless.
2014-04-01Optimize #2982Andrey Andreev1-1/+1
2014-04-01Merge pull request #2981 from vlakoff/base_urlAndrey Andreev1-3/+3
Work on determination of "base_url" config item
2014-04-01Discard the unwanted changesvlakoff1-3/+10
2014-04-01Yet another method for determining "base_url"vlakoff1-8/+1
This one is great because we don't have to deal with the special cases: * in Windows, dirname('/foo/index.php') gives "/foo", but dirname('/index.php') gives "\" instead of "/" * dirname() doesn't include the trailing slash, with the expection of "/" (root) props @narfbg
2014-04-01Remove spaces around concatenationsvlakoff1-3/+3
per request
2014-04-01Removed tab on empty line too.Ahmad Anbar1-1/+1
2014-04-01Removed tabs.Ahmad Anbar1-2/+2
2014-04-01Fixed according to comment.Ahmad Anbar1-3/+6
2014-04-01Fix #2970Ahmad Anbar1-1/+6
2014-03-31Different method for determining "base_url"vlakoff1-2/+7
Better performance by not using regex.
2014-03-31Robuster determination of "base_url" config itemvlakoff1-1/+3
Remove the basename only at the end, to avoid edge cases.
2014-03-31Refactoring in Config->__construct()vlakoff1-10/+3
Put the $_SERVER['HTTP_HOST'] fallback in a more logical place.
2014-03-31[ci skip] Fix #2972Andrey Andreev1-1/+1
2014-03-30Fix #2976Andrey Andreev1-0/+4
2014-03-25Simplify callback routesAndrey Andreev1-29/+0
There's no need for all that Reflection magic, it's only slowing down the whole process
2014-03-242 more micro-optimizations in CI_LoaderAndrey Andreev1-3/+3
2014-03-24Yet another modification of CI_Loader::_ci_autoload()Andrey Andreev1-2/+1
2014-03-24[ci skip] Spacing adjustmentsAndrey Andreev1-10/+10
2014-03-24Alter previous commitAndrey Andreev1-1/+1
2014-03-24CI_Loader::_ci_autoload() micro-optimizationAndrey Andreev1-3/+3
2014-03-21remove eolfabianozenatti1-1/+1
2014-03-21Fix typo in CI_Input constructorfabianozenatti1-2/+2
2014-03-20Fixed typo in model loader.James1-1/+1
Signed-off-by: James <me@tfel.net>
2014-03-19Fix profiling of benchmarked names like 'something_endpoint_end'Richard Cunningham1-1/+1
2014-03-18More xss_clean() improvementsAndrey Andreev1-2/+2
Issue described in https://github.com/EllisLab/CodeIgniter/issues/2667#issuecomment-37980030 + a false positive
2014-03-18Another xss_clean() improvementAndrey Andreev1-2/+2
Fixes this: https://github.com/EllisLab/CodeIgniter/issues/2667#issuecomment-37958136
2014-03-18xss_clean() improvementAndrey Andreev1-4/+4
Fixes this: https://github.com/EllisLab/CodeIgniter/issues/2667#issuecomment-37819186