Commits on Jan 31, 2012
  1. SECURITY Sanitize messages passed to generated JS calls in FormRespon…

    chillu committed Jan 31, 2012
    …se::status_message(), e.g. to avoid XSS on 'Successfully published <page title>' messages
Commits on Nov 2, 2011
  1. Merge pull request #63 from simonwelsh/patch-4

    sminnee committed Nov 2, 2011
    Documentation fix
Commits on Oct 18, 2011
  1. MINO Switching 'rewriteHashlinks' sanitization from Convert::raw2att(…

    chillu committed Oct 18, 2011
    …) to strip_tags() to make the resulting PHP more portable when mode is set to 'php'
  2. BUGFIX Escaping base URLs for anchor links rewritten by SSViewer::pro…

    chillu committed Oct 17, 2011
    …cess() with the 'rewriteHashlinks' option enabled (which is a framework default, and necessary because of the use of a <base> tag). Also added escaping for base URLs rendered through the 'php' variation of 'rewriteHashlinks'
Commits on Oct 17, 2011
  1. ENHANCEMENT Added SSViewer::getOption() as a logical counterpart to S…

    chillu committed Oct 17, 2011
Commits on Sep 28, 2011
  1. ENHANCEMENT Updated Windows installation documentation on using PHP M…

    halkyon committed Sep 28, 2011
    …anager which takes out most of the PHP configuration effort.
  2. BUGFIX i18n::include_by_locale() assumes a themes directory always ex…

    halkyon committed Sep 28, 2011
    …ists and causes error if that's not the case. Some projects don't require any themes, like pure applications.
Commits on Sep 23, 2011
Commits on Sep 15, 2011
  1. ENHANCEMENT Added File.ShowInSearch flag to mirror the existing SiteT…

    chillu committed Sep 15, 2011
    …ree.ShowInSearch flag - e.g. useful to limit visibility of user-uploaded files. Enforced in MySQLDatabase->searchEngine().
  2. BUGFIX Consistently using Convert::raw2sql() instead of DB::getConn()…

    chillu committed Sep 15, 2011
    …->addslashes() or PHP's deprecated addslashes() for database escaping
Commits on Sep 7, 2011
Commits on Aug 26, 2011
  1. Changes error reporting level to explicitly exclude E_DREPRECATED and…

    simonwelsh committed Aug 26, 2011
    … E_STRICT, rather than xor.
Commits on Aug 25, 2011
  1. Merge pull request #48 from simonwelsh/2.4

    sminnee committed Aug 25, 2011
    PHP5.4 Support
Commits on Aug 24, 2011
  1. Removed references to Language Chooser Widget until it can be updated…

    simonwelsh committed Aug 24, 2011
    … to work with the new translation model.
Commits on Aug 23, 2011
  1. Merge pull request #46 from simonwelsh/patch-1

    wilr committed Aug 23, 2011
    MINOR: removed references to Language Chooser which is only supported in 2.2.
Commits on Aug 22, 2011
  1. Merge pull request #45 from madamimadam/2.4

    sminnee committed Aug 22, 2011
    Removed profanity
  2. Removed profanity

    Adam Rice committed Aug 22, 2011
    Not only is profanity unprofessional but it can also be blocked by
    corporate web filters (which is somewhat embarrassing when clients call
    to ask why it is in their site)
Commits on Aug 19, 2011
Commits on Aug 14, 2011
  1. Merge pull request #36 from lku/cz_translations

    chillu committed Aug 14, 2011
    MINOR Cz translations
Commits on Aug 11, 2011
  1. MINOR: documentation fixes from comments provided by the community. S…

    wilr committed Aug 11, 2011
    …ee below for a list of fixes:
    * fixed typo in Email documentation.
    * updated link for tutorial code to be relative now that bug #6408 is fixed
    * removed 2.3 related docs from 2.4 docs folder
    * fixed typo with Orientation documentation
    * updated old task url for images/flush
Commits on Jun 9, 2011
  1. fix language namespace

    devel committed Jun 9, 2011
  2. Add some CZ translations

    devel committed Jun 9, 2011
Commits on May 30, 2011
  1. ENHANCEMENT Allowing filtered arguments on specific functions like my…

    chillu committed May 26, 2011
    …sql_connect() in SS_Backtrace
Commits on May 19, 2011
  1. MINOR Return empty string from SQLQuery->sql() if SELECT is the defau…

    chillu committed May 19, 2011
    …lt value, and no FROM is set (moved logic from DB-specific implementations)
Commits on Mar 22, 2011
  1. BUGFIX Fixed MigrateSiteTreeLinkingTask not working correctly when CL…

    halkyon committed Mar 22, 2011
    …RF newlines being used
Commits on Mar 21, 2011
  1. BUGFIX Fixed SQL injection in Folder::findOrMake() parameter. Exploit…

    chillu committed Mar 21, 2011
    …able through Upload::, although unlikely to be set via user input.
Commits on Mar 20, 2011
  1. Small text changes, added api links, cont. updating images for tutori…

    Michael Andrewartha committed with chillu Mar 8, 2011
    …als, fixed tutorials from member feedback
  2. MINOR Documentation fixes

    chillu committed Mar 8, 2011
  3. MINOR Updated contributing guidelines

    chillu committed Mar 20, 2011