Thu, 01 Jul 2010 18:24:11 -0400 |
Dan Fuhry |
Integrated XSS patch for 1.1.7 maintenance branch
1.1.7-maintenance 1.1.7pl1
|
file |
diff |
annotate
|
Mon, 28 Jun 2010 10:43:04 -0400 |
Dan Fuhry |
SECURITY: Multiple XSS in Special:ChangeStyle. Reported by Mesut Timur of Mavituna Security - thanks! Also removed my stand-in for ucfirst().
|
file |
diff |
annotate
|
Mon, 19 Apr 2010 18:07:43 -0400 |
Dan |
Fixed registration admin override with account_activation set to disable.
|
file |
diff |
annotate
|
Sun, 28 Mar 2010 23:10:46 -0400 |
Dan |
Going ahead with the switch to tabs. This is a major coding standards change! If any unusual parser bugs show up, check this changeset. Converted all .php, .js, .tpl, .css, and .json files and did basic testing.
|
file |
diff |
annotate
|
Wed, 17 Mar 2010 14:21:46 -0400 |
Dan |
Fixed username not being decoded in Special:ActivateAccount
|
file |
diff |
annotate
|
Wed, 06 Jan 2010 02:02:51 -0500 |
Dan |
Fixed some bugs with account activation, especially if you're a half-logged-in vegetable.
|
file |
diff |
annotate
|
Sat, 12 Dec 2009 15:39:36 -0500 |
Dan |
CAPTCHA: Added smart autosubmit for registration page. Usability testing was so-so, may back out later.
|
file |
diff |
annotate
|
Tue, 03 Nov 2009 22:08:48 -0500 |
Dan |
Logins: reorganized data structures a bit. WiP - needs test routine done.
|
file |
diff |
annotate
|
Fri, 25 Sep 2009 14:18:20 -0400 |
Dan |
HTML login: fixed bad submit under IE
|
file |
diff |
annotate
|
Sun, 20 Sep 2009 03:59:36 -0400 |
Dan |
Login: if return-to specified and already logged in, jump to return-to instead of main page.
|
file |
diff |
annotate
|
Fri, 11 Sep 2009 09:54:32 -0400 |
Dan |
Common: renamed global $title to $urlname (it broke the API from non-plugin Enano scripts)
|
file |
diff |
annotate
|
Fri, 21 Aug 2009 20:41:38 -0400 |
Dan |
Sessions: Improved inactive account UX; shuffled around a bit of code so that whitelist checks are shared; fixed a bunch of bugs related to ban code and IPv6 addresses
|
file |
diff |
annotate
|
Thu, 20 Aug 2009 20:01:55 -0400 |
Dan |
Fixed some upgrade bugs; added support for choosing one's own date/time formats; rebrand as 1.1.7
|
file |
diff |
annotate
|
Thu, 02 Jul 2009 09:01:29 -0400 |
Dan |
Login and sessions: fixed some improper handling of the config for lockout logic
|
file |
diff |
annotate
|
Fri, 15 May 2009 19:52:12 -0400 |
Dan |
Added another word to the CAPTCHA blacklist (thanks Neal).
|
file |
diff |
annotate
|