| .. |
|
auth.php
|
Stop being too paranoid about hacking of includes containing only fully inclusive functions
|
2002-03-18 23:53:12 +00:00 |
|
bbcode.php
|
Fixed little bug that made the smilies image tags not XHTML compatible
|
2002-03-18 17:46:43 +00:00 |
|
constants.php
|
Updates to overcome security issue + updates of various functions, initial version of profile registration include ... not completed but should be functional for obvious reasons(!)
|
2002-03-18 13:35:23 +00:00 |
|
db.php
|
Updates to overcome security issue + updates of various functions, initial version of profile registration include ... not completed but should be functional for obvious reasons(!)
|
2002-03-18 13:35:23 +00:00 |
|
emailer.php
|
Alter way variables are substituted ... was causing problems when a [] followed a {VAR} in the email ...
|
2002-03-22 19:33:28 +00:00 |
|
functions.php
|
timezone setup should be isset not !empty ... GMT is 0 after all .. oops
|
2002-03-23 23:12:31 +00:00 |
|
functions_admin.php
|
Stop being too paranoid about hacking of includes containing only fully inclusive functions
|
2002-03-18 23:53:12 +00:00 |
|
functions_post.php
|
Fix missing global var causing failure of include for username validation
|
2002-03-21 13:29:53 +00:00 |
|
functions_search.php
|
preg_quote stopwords
|
2002-03-22 17:53:28 +00:00 |
|
functions_selects.php
|
Stop being too paranoid about hacking of includes containing only fully inclusive functions
|
2002-03-18 23:53:12 +00:00 |
|
functions_validate.php
|
Wasn't checking for wildcards in disallowed usernames during validation ... how we missed this for months is beyond me ... thanks to the anonymous bug track adder ...
|
2002-03-21 14:29:42 +00:00 |
|
index.htm
|
Add blank indexes to stop nosey people being, erm, nosey
|
2001-11-21 13:06:56 +00:00 |
|
page_header.php
|
Suggested alteration of cache control header by Nathan
|
2002-03-22 18:46:31 +00:00 |
|
page_tail.php
|
Updates to overcome security issue + updates of various functions, initial version of profile registration include ... not completed but should be functional for obvious reasons(!)
|
2002-03-18 13:35:23 +00:00 |
|
prune.php
|
Change a few quotes
|
2002-03-22 17:54:33 +00:00 |
|
sessions.php
|
Remove stripslashes from pagestart and begin session_id ...
|
2002-03-19 11:59:36 +00:00 |
|
smtp.php
|
Stop being too paranoid about hacking of includes containing only fully inclusive functions
|
2002-03-18 23:53:12 +00:00 |
|
sql_parse.php
|
Stop being too paranoid about hacking of includes containing only fully inclusive functions
|
2002-03-18 23:53:12 +00:00 |
|
template.php
|
Stop being too paranoid about hacking of includes containing only fully inclusive functions
|
2002-03-18 23:53:12 +00:00 |
|
topic_review.php
|
Non-authed user could potentially utilise topic_review to read denied forums .... thanks Ashe
|
2002-03-18 23:56:36 +00:00 |
|
usercp_activate.php
|
Just me nitpicking... Thought the file header name should match the filename...
|
2002-03-19 21:54:47 +00:00 |
|
usercp_avatar.php
|
Fix issues with quotes in profile fields and avatars
|
2002-03-23 14:56:51 +00:00 |
|
usercp_email.php
|
Minor change ... don't strip_tags ... I don't think this is a security issue but it could use checking ... everyone be aware of my being unsure before using this!
|
2002-03-22 19:32:35 +00:00 |
|
usercp_register.php
|
Move $error=FALSE out of conditional to top of script
|
2002-03-24 13:08:20 +00:00 |
|
usercp_sendpasswd.php
|
Well.... I hope this is right... It works at least. Can't seem to reach Paul currently, and I don't want this to slip through for RC-4, so for now I copied the old stuff from a previous revision of profile, and pasted it in here... Tested to work on my local machine... (if you had something else in mind Paul feel free to overwrite my version)
|
2002-03-19 20:47:59 +00:00 |
|
usercp_viewprofile.php
|
Stop being too paranoid about hacking of includes containing only fully inclusive functions
|
2002-03-18 23:53:12 +00:00 |
