Tue, 12 Jul 2011 22:13:37 -0400 |
Dan Fuhry |
SECURITY: Fixed several XSS vulns reported by Secunia, mostly in Private Messaging. Also backported CSRF protection API from 1.1.x, and protected Private Messaging and logout functions.
|
changeset |
files
|
Tue, 16 Nov 2010 12:44:22 -0500 |
Dan Fuhry |
Retagged current-stable
|
changeset |
files
|
Tue, 16 Nov 2010 12:43:24 -0500 |
Dan Fuhry |
Tagged release: 1.0.6pl3
|
changeset |
files
|
Tue, 16 Nov 2010 12:42:36 -0500 |
Dan Fuhry |
Version bump to 1.0.6pl3 (the real release number)
1.0.6pl3 current-stable
|
changeset |
files
|
Tue, 16 Nov 2010 12:20:50 -0500 |
Dan Fuhry |
Version bump to 1.0.6pl2
|
changeset |
files
|
Tue, 16 Nov 2010 12:19:13 -0500 |
Dan Fuhry |
SECURITY: Fix SQL injection in banlist check
|
changeset |
files
|
Mon, 28 Jun 2010 11:11:09 -0400 |
Dan Fuhry |
Tagged release: 1.0.6pl2
|
changeset |
files
|
Mon, 28 Jun 2010 11:00:51 -0400 |
Dan Fuhry |
SECURITY: Multiple XSS in Special:ChangeStyle. Reported by Mesut Timur of Mavituna Security - thanks!
1.0.6pl2
|
changeset |
files
|
Mon, 28 Dec 2009 16:52:41 -0500 |
Dan |
Fixed a couple non-security sanitizer and editor bugs
|
changeset |
files
|
Mon, 28 Dec 2009 12:19:47 -0500 |
Dan |
Updated current-stable tag
|
changeset |
files
|
Mon, 24 Aug 2009 12:33:36 -0400 |
Dan |
Stable release: Enano CMS 1.0.6pl1
|
changeset |
files
|
Sat, 22 Aug 2009 13:31:09 -0400 |
Dan |
Fixed lockup on unclosed HTML tags in wikiformat_process_block()
1.0.6pl1
|
changeset |
files
|
Sat, 22 Aug 2009 13:30:39 -0400 |
Dan |
Version bumped to v1.0.6pl1
|
changeset |
files
|
Fri, 21 Aug 2009 11:50:22 -0400 |
Dan |
SECURITY: Comments: fix poor sanitization of subject on initial submit
|
changeset |
files
|
Sat, 21 Mar 2009 18:58:41 -0400 |
Dan |
Merging nighthawk and scribus branches
|
changeset |
files
|
Sat, 21 Mar 2009 18:57:34 -0400 |
Dan |
Fixed typo in function call to check for apache 2.2
|
changeset |
files
|