Wed, 13 Mar 2013 00:18:23 -0400 |
Dan Fuhry |
Compatibility band-aids
default tip
|
file |
diff |
annotate
|
Tue, 12 Jul 2011 22:37:21 -0400 |
Dan Fuhry |
Release prep 1.0.6pl4
1.0.6pl4
|
file |
diff |
annotate
|
Tue, 12 Jul 2011 22:13:37 -0400 |
Dan Fuhry |
SECURITY: Fixed several XSS vulns reported by Secunia, mostly in Private Messaging. Also backported CSRF protection API from 1.1.x, and protected Private Messaging and logout functions.
|
file |
diff |
annotate
|
Mon, 28 Dec 2009 16:52:41 -0500 |
Dan |
Fixed a couple non-security sanitizer and editor bugs
|
file |
diff |
annotate
|
Sat, 22 Aug 2009 13:31:09 -0400 |
Dan |
Fixed lockup on unclosed HTML tags in wikiformat_process_block()
1.0.6pl1
|
file |
diff |
annotate
|
Sat, 22 Aug 2009 13:30:39 -0400 |
Dan |
Version bumped to v1.0.6pl1
|
file |
diff |
annotate
|
Sat, 17 Jan 2009 11:51:17 -0500 |
Dan |
Rebrand as v1.0.6 (Roane)
|
file |
diff |
annotate
|
Sat, 17 Jan 2009 11:32:18 -0500 |
Dan |
SECURITY: Fix XSS under IE in closing tags (shared sanitizer)
|
file |
diff |
annotate
|
Fri, 07 Nov 2008 08:56:53 -0500 |
Dan |
Fixed sanitization of full page IDs with accidental parse of escaped hex character in dirtify_page_id(). Thanks Asterion; see http://forum.enanocms.org/post/20/
|
file |
diff |
annotate
|
Tue, 16 Sep 2008 08:20:14 -0400 |
Dan |
Fixed IPv6 address match (the one from phpBB3 did not work)
|
file |
diff |
annotate
|
Fri, 09 May 2008 23:32:51 -0400 |
Dan |
Rebrand as 1.0.5 (Ferrishyn)
|
file |
diff |
annotate
|
Thu, 28 Feb 2008 12:33:01 -0500 |
Dan |
Rebrand as 1.0.4 (Ellyyllon)
|
file |
diff |
annotate
|
Sun, 27 Jan 2008 23:43:24 -0500 |
Dan |
Fixed case where HTML comments were getting stripped when opening tag not followed by whitespace (<!--foo--> was stripped, <!-- foo --> was not, neither is stripped now)
|
file |
diff |
annotate
|
Wed, 19 Dec 2007 17:15:48 -0500 |
Dan |
Fixed: $paths->page_id not set when the page doesn't exist; finally fixed garbled page names for IP addresses
|
file |
diff |
annotate
|