phpbb/phpBB
Andreas Fischer 23d2798b6d [ticket/10038] Use request_var() in the avatar code path of download/file.php
There is no reason not to use request_var() here because it is available anyway
since 3afd2c6948.

This change especially prevents submitting an array which might then throw an
error in one of the string functions substr() or strpos() later on.

PHPBB3-10038
2011-02-12 19:22:51 +01:00
..
adm [ticket/10020] Fix 32-bit php braindamage around INT_MIN. 2011-02-04 00:02:38 +01:00
cache [ticket/9520] Removed per directory web.config files. 2010-05-03 19:31:40 +02:00
develop [ticket/9859] Remove years in credit line from some more files. 2011-01-16 17:53:30 +01:00
docs [ticket/10007] Add directive 'internal' to blocked folders in nginx config. 2011-01-24 17:35:10 +01:00
download [ticket/10038] Use request_var() in the avatar code path of download/file.php 2011-02-12 19:22:51 +01:00
files [ticket/9520] Removed per directory web.config files. 2010-05-03 19:31:40 +02:00
images [ticket/9520] Removed per directory web.config files. 2010-05-03 19:31:40 +02:00
includes Merge branch 'ticket/p/10029' into develop-olympus 2011-02-10 00:20:34 +01:00
install [ticket/9859] Remove years in credit line from some more files. 2011-01-16 17:53:30 +01:00
language [ticket/9905] Add SQLite to the DSN description 2010-12-28 21:21:16 +01:00
store [ticket/9520] Removed per directory web.config files. 2010-05-03 19:31:40 +02:00
styles Merge branch 'ticket/nickvergessen/9989' into develop-olympus 2011-01-30 00:12:52 +01:00
.htaccess [Feature] Ability to use HTTP authentication in ATOM feeds by passing the GET parameter auth=http 2010-01-19 19:08:51 +00:00
common.php [ticket/9830] Redirect to install directly when config.php does not exist. 2010-09-16 22:00:17 +02:00
cron.php dumdidum... sorry. ;) 2007-10-05 14:30:11 +00:00
faq.php populate who is online only where required 2009-08-12 10:30:37 +00:00
feed.php [ticket/9727] Smiley Path replacement in feeds is too generic 2010-07-18 11:51:13 -05:00
index.php [ticket/7720] Fix alternative image-description for unread posts. 2010-07-14 20:55:07 +02:00
mcp.php fix mcp sorting for pm_reports, and some minor language changes 2009-07-22 13:33:54 +00:00
memberlist.php [ticket/9772] Unify permissions for sending email when board_email_form is off 2010-08-28 15:49:47 -05:00
posting.php [ticket/8736] guest can have 255 chars long username 2010-12-04 20:04:10 +01:00
report.php Fix Bug #54375 - Show correct HTML title when reporting private messages. 2009-11-24 14:27:17 +00:00
search.php [ticket/9851] "Search new posts" should require login. 2010-12-13 14:58:43 +01:00
style.php [ticket/9629] Allow style.php to retrieve its session ID from cookies 2010-07-11 01:35:01 +02:00
ucp.php [ticket/9785] Allow users to request new passwords when board is disabled. 2010-08-22 20:26:18 +02:00
viewforum.php Merge branch 'ticket/nickvergessen/7720' into develop-olympus 2010-07-14 20:55:49 +02:00
viewonline.php Fix bug #46215 - Adjust viewonline filename regular expression to be less strict. 2009-06-09 15:52:03 +00:00
viewtopic.php [ticket/9772] Unify permissions for sending email when board_email_form is off 2010-08-28 15:49:47 -05:00
web.config [ticket/9520] Additionally filter requests for {common,config}.php 2010-05-03 19:32:29 +02:00