Age | Commit message (Expand) | Author | Files | Lines |
---|---|---|---|---|
2015-10-08 | [ci skip] Prepare 3.0.2 release | Andrey Andreev | 1 | -1/+1 |
2015-10-05 | Some more intrusive XSS cleaning | Andrey Andreev | 1 | -5/+11 |
2015-10-05 | Close #4155 | Andrey Andreev | 1 | -1/+1 |
2015-10-02 | More XSS stuff | Andrey Andreev | 1 | -1/+1 |
2015-09-29 | Merge pull request #4126 from zoaked/patch-1 | Andrey Andreev | 1 | -1/+0 |
2015-09-24 | Fix #4137 | Andrey Andreev | 1 | -1/+1 |
2015-09-21 | More XSS stuff | Andrey Andreev | 1 | -3/+3 |
2015-09-17 | Don't allow open-ended tags to pass through xss_clean() | Andrey Andreev | 1 | -4/+9 |
2015-09-17 | Refactor 'evil attributes' sanitization logic | Andrey Andreev | 1 | -92/+66 |
2015-09-16 | Fix #4116 | Andrey Andreev | 1 | -6/+6 |
2015-09-16 | Fix #4120 | Andrey Andreev | 1 | -3/+13 |
2015-09-15 | Missing character in the evil attributes pattern | Andrey Andreev | 1 | -1/+1 |
2015-09-14 | Another addition to tag detection patterns in xss_clean() | Andrey Andreev | 1 | -1/+4 |
2015-09-14 | Close #4098 | Andrey Andreev | 1 | -2/+18 |
2015-09-14 | Fix #4032 | Andrey Andreev | 1 | -5/+8 |
2015-09-14 | Fix #4044 | Andrey Andreev | 1 | -5/+5 |
2015-09-14 | Fix #4109 | Andrey Andreev | 1 | -20/+22 |
2015-09-14 | Add 'eval' to a JS blacklist in xss_clean() | Andrey Andreev | 1 | -7/+10 |
2015-09-14 | Move _remove_evil_attributes() call | Andrey Andreev | 1 | -4/+3 |
2015-09-11 | Harden xss_clean() more | Andrey Andreev | 1 | -5/+37 |
2015-09-11 | Improve on previous commit | Andrey Andreev | 1 | -1/+1 |
2015-09-11 | Replace the latest XSS patches | Andrey Andreev | 1 | -9/+21 |
2015-09-10 | Last commit didn't adjust a RE index | Andrey Andreev | 1 | -1/+1 |
2015-09-10 | Fix & extend 700619cebf75c4e4fcda6a2d7bea1afb84a029e4 | Andrey Andreev | 1 | -2/+2 |
2015-09-10 | Change form validation library to allow the pipe character within square brac... | rich | 1 | -1/+1 |
2015-09-10 | Fix #4106 | Andrey Andreev | 1 | -2/+2 |
2015-09-07 | Remove unnecessary count() calls from _sanitize_globals() | Andrey Andreev | 1 | -3/+3 |
2015-09-07 | Move csrf_verify() call out of _sanitize_globals() | Andrey Andreev | 1 | -6/+6 |
2015-09-03 | Fix #4096 | Andrey Andreev | 1 | -1/+1 |
2015-09-01 | Fix #4093 | Andrey Andreev | 1 | -1/+1 |
2015-09-01 | There was an extra = sign in this file | Marco Monteiro | 1 | -1/+1 |
2015-08-31 | [ci skip] Fix #4091 | Andrey Andreev | 1 | -1/+1 |
2015-08-31 | Fix #4086 | Andrey Andreev | 1 | -13/+13 |
2015-08-31 | Fix #4073 | Andrey Andreev | 1 | -7/+16 |
2015-08-31 | Fix #4066 | Andrey Andreev | 2 | -18/+6 |
2015-08-20 | Fix #4065 | Andrey Andreev | 1 | -1/+1 |
2015-08-19 | [ci skip] Fix 'sqlsrv' connect failure endless loop | Andrey Andreev | 1 | -7/+8 |
2015-08-17 | Allow capitals in the middle of model names | Andrey Andreev | 1 | -1/+1 |
2015-08-15 | Fix #4056 | Andrey Andreev | 1 | -1/+1 |
2015-08-14 | Fix #4052 | Andrey Andreev | 1 | -20/+0 |
2015-08-13 | Fix typo in comments | Claudio Galdiolo | 1 | -1/+1 |
2015-08-07 | [ci skip] Partial patch for #2284 | Andrey Andreev | 1 | -2/+5 |
2015-08-07 | [ci skip] Start of 3.0.2-dev | Andrey Andreev | 1 | -1/+1 |
2015-08-07 | Fix #4023 | Andrey Andreev | 1 | -1/+1 |
2015-08-07 | Fix ReDoS-bug in string_helper.php | Kevin Morssink | 1 | -1/+1 |
2015-08-05 | Fix #4026 | Andrey Andreev | 1 | -1/+4 |
2015-08-05 | Reduce once $config['query_toggle_count'] checking | bjjay | 1 | -6/+0 |
2015-08-05 | Fix #4027 | Andrey Andreev | 1 | -8/+12 |
2015-08-03 | Fix #4015 | Andrey Andreev | 1 | -1/+2 |
2015-08-03 | [ci skip] Normalize tabs/spaces | Andrey Andreev | 9 | -18/+18 |