Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2007-06-28 | Modified the include so that there is a bit of filename security | paulburdick | 1 | -1/+1 | |
2007-06-28 | *Added filename_security() method to Input library | paulburdick | 1 | -0/+50 | |
*Modified the Router so that when Query Strings are Enabled, the controller trigger and function trigger values are sanitized for filename include security. | |||||
2007-06-28 | *Modified the Router so that when Query Strings are Enabled, the controller ↵ | paulburdick | 1 | -3/+4 | |
trigger and function trigger values are sanitized for filename include security. | |||||
2007-06-28 | (no commit message) | paulburdick | 1 | -4/+13 | |
2007-06-28 | Improved XSS clean to not allowing this: | paulburdick | 1 | -4/+12 | |
xss_clean("<x<xss>ss <scr<xss>ipt a='>'>alert/**/('!');//*/</script</script >>"); | |||||
2007-06-26 | (no commit message) | paulburdick | 1 | -1/+1 | |
2007-06-26 | *Updated the XSS Filtering to take into account the IE expression() ability | paulburdick | 1 | -1/+7 | |
2007-06-24 | Modified the is_image() method in the Upload library to take into account ↵ | paulburdick | 1 | -5/+16 | |
Windows IE 6/7 eccentricities when dealing with MIMEs | |||||
2007-06-24 | Fixed the do_xss_clean() method so that if file_get_contents returns FALSE, ↵ | paulburdick | 1 | -1/+1 | |
then we return FALSE... Previously, if it did NOT return FALSE we returned FALSE and that is simply idiotic. | |||||
2007-06-18 | typo in comments | Derek Allard | 1 | -1/+1 | |
2007-06-14 | (no commit message) | Rick Ellis | 1 | -3/+3 | |
2007-06-13 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-12 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-12 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-12 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -7/+43 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -19/+17 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -2/+2 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -6/+8 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -4/+4 | |
2007-06-11 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-09 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-06-09 | (no commit message) | Rick Ellis | 1 | -10/+23 | |
2007-06-09 | (no commit message) | Rick Ellis | 3 | -17/+10 | |
2007-05-24 | typo fix | Derek Allard | 1 | -1/+1 | |
2007-05-09 | typo fixes | Derek Allard | 3 | -99/+94 | |
2007-05-04 | Modified XSS Cleaning routine to be more performance friendly and compatible ↵ | Derek Jones | 1 | -8/+47 | |
with PHP 5.2's new PCRE backtrack and recursion limits. - replaced link and image tag javascript sanitization preg_replace()'s with callback functions to avoid excessive backtracks on strings with many links / image tags. | |||||
2007-05-02 | return preg_replace("|^/*(.+?)/*$|", "\\1", $str); | Derek Allard | 1 | -2/+2 | |
to return trim($str, '/'); | |||||
2007-05-02 | $this->base_url = preg_replace("/(.+?)\/*$/", "\\1/", $this->base_url); | Derek Allard | 1 | -2/+2 | |
changed to $this->base_url = rtrim($this->base_url, '/') .'/'; | |||||
2007-05-02 | // Prep the current page - no funny business! | Derek Allard | 1 | -1/+1 | |
$this->cur_page = preg_replace("/[a-z\-]/", "", $this->cur_page); became // Prep the current page - no funny business! $this->cur_page = (int) $this->cur_page; | |||||
2007-05-01 | fixed a bug in the calendar library | Derek Allard | 1 | -1/+1 | |
2007-04-30 | added a note about regex and custom routes | Derek Allard | 1 | -48/+49 | |
2007-04-30 | fixed bug in output | Derek Allard | 1 | -1/+1 | |
2007-04-30 | fixed a typo in rpcs.php library | Derek Allard | 1 | -1/+1 | |
2007-04-27 | (no commit message) | Rick Ellis | 1 | -1/+1 | |
2007-04-27 | modified _add_data() to be compatible with OS X | Derek Jones | 1 | -5/+2 | |
(removed CRC and length from end of file stream) | |||||
2007-04-27 | fixed checked = 1 to be checked = checked in array created checkboxes | Derek Allard | 1 | -0/+6 | |
2007-04-25 | APPVER replaced by CI_VERSION | Derek Allard | 2 | -2/+2 | |
2007-04-24 | fixed router but that was ignoring the scaffolding route for optimization | Derek Allard | 1 | -2/+3 | |
2007-04-15 | update app_ver | Derek Allard | 1 | -1/+1 | |
2007-04-15 | update pMachine to EllisLab | Derek Allard | 85 | -21999/+21999 | |
update copyright year update Code Igniter to CodeIgniter | |||||
2007-04-10 | typo fix | Derek Allard | 1 | -1/+1 | |
2007-04-07 | repeater won't return any results if it is set to repeat 0 times. | Derek Allard | 1 | -153/+153 | |
2007-04-03 | array to string addition | Derek Allard | 1 | -202/+212 | |
http://codeigniter.com/forums/viewthread/46994/ | |||||
2007-03-24 | passes hostname and not database now | Derek Allard | 1 | -452/+452 | |
2007-03-13 | removed duplicate 'DATE_RFC822' | Derek Allard | 1 | -565/+564 | |