Permalink
Commits on Sep 4, 2017
  1. Add user specifc data to token hash to avoid privilige escalation

    ceeram committed Sep 4, 2017
Commits on Sep 1, 2017
  1. Do not fallback to insecure randomBytes, should be called explicitly

    ceeram authored and markstory committed Aug 25, 2017
Commits on Aug 26, 2017
  1. Use hmac for digest nonces

    ceeram committed Aug 25, 2017
Commits on Aug 25, 2017
  1. update cacert.pem to latest version

    ceeram committed Aug 25, 2017
  2. Replace md5 with hmac hashes to provide unpredictability and resistan…

    ceeram committed Aug 25, 2017
    …ce to collisions
  3. Use hmac for token hashes to avoid collisions

    ceeram committed Aug 25, 2017
  4. Do not serve hidden files or files in hidden folders

    ceeram committed Aug 25, 2017
  5. Escape urls to avoid xss

    ceeram committed Aug 24, 2017
  6. Ensure input passwords will be hashed even when a user doesn't exist

    ceeram committed Aug 24, 2017
  7. Use timing attack safe string comparison

    ceeram committed Aug 25, 2017
Commits on Aug 24, 2017
  1. Change default for parseHuge to false to avoid OOM on xml expansion

    ceeram committed Aug 24, 2017
  2. HTTP_X_FORWARDED_FOR can be spoofed, proxies append to the list, so u…

    ceeram committed Aug 24, 2017
    …se last ip
Commits on Jan 26, 2017
  1. Remove unneeded call of clean() as options already contain markClean

    ceeram committed Jan 26, 2017
Commits on Dec 19, 2016
  1. Minor readme enhancements

    ceeram committed Dec 19, 2016
  2. Update makefile

    ceeram committed Dec 19, 2016
  3. Fix indentation

    ceeram committed Dec 19, 2016
  4. Subtree split of Form namespace, solves #9890

    ceeram committed Dec 19, 2016
Commits on Nov 6, 2016
  1. Fix mailmap for thinkingmedia

    ceeram committed Nov 6, 2016
Commits on Nov 5, 2016
  1. Added my emails

    ceeram committed Nov 5, 2016
Commits on Oct 10, 2016
  1. Pin apcu version to avoid segfault on travis

    ceeram committed Oct 10, 2016
Commits on Apr 22, 2016
  1. Update minimum requirements for cakephp/orm. Fixes cakephp/orm#10

    ceeram committed Apr 22, 2016
Commits on Apr 16, 2015
  1. Merge pull request #6350 from cakephp/fix-sort-iterator

    ceeram committed Apr 16, 2015
    Fixing regression in SortByIterator, closes #6349
Commits on Mar 28, 2015
  1. Update docblock

    ceeram committed Mar 28, 2015
Commits on Mar 26, 2015
  1. Correct type in docblock

    ceeram committed Mar 26, 2015
Commits on Mar 19, 2015
  1. Merge pull request #6106 from dakota/3.0-fix-memcache

    ceeram committed Mar 19, 2015
    3.0 - Fix issue with memcache and domains starting with letter "u"
Commits on Mar 11, 2015
  1. Fix time related test

    ceeram committed Mar 11, 2015
  2. Fix case sensitivity errors on associations

    ceeram committed Mar 11, 2015
Commits on Jan 20, 2015
  1. Update docblocks and readme to not use the file extension in load() a…

    ceeram committed Jan 20, 2015
    …nd dump()
Commits on Jan 9, 2015
  1. Minor docblock fix

    ceeram committed Jan 9, 2015
Commits on Nov 28, 2014
  1. string concatenation fixed

    ceeram committed Nov 28, 2014
Commits on Nov 27, 2014
  1. Remove unused file

    ceeram committed Nov 27, 2014
Commits on Oct 10, 2014
  1. Fix PHPCS errors

    ceeram committed Oct 10, 2014