summaryrefslogtreecommitdiff
path: root/includes
AgeCommit message (Expand)Author
2014-07-27Merge branch 'bug-1291' into testserver-stableBenny Baumann
2014-07-27bug 1291: Fix XSS in WoT 15Felix Dörre
2014-07-15Merge branch 'bug-1226' into releaseBenny Baumann
2014-07-15Merge branch 'bug-1280' into releaseBenny Baumann
2014-06-21Merge branch 'bug-1280' into testserver-stableMichael Tänzer
2014-06-21bug 1280: Implement normalisation in of language codes in the L10n classbug-1280Michael Tänzer
2014-06-21bug 1280: Remove trailing white spaceMichael Tänzer
2014-06-21Revert "bug-1280: Handle more different types of "languages":"Michael Tänzer
2014-06-19Merge branch 'bug-1212' into testserver-stableBenny Baumann
2014-06-19bug 1212-related: match multiple domain partsbug-1212Felix Dörre
2014-06-19Merge branch 'bug-1212' into testserver-stableBenny Baumann
2014-06-19bug 1212-related: ensure that domain names contain only valid symbolsFelix Dörre
2014-06-19bug 1212: fixing domains like "*.*.domain.tld"Felix Dörre
2014-06-19bug-1212-related: remove "like" for matching domainsFelix Dörre
2014-06-15Merge branch 'bug-657' into testserver-stableBenny Baumann
2014-06-15bug 657: Whitespace formattingbug-657Benny Baumann
2014-06-15bug 657: Properly escape existing valuesBenny Baumann
2014-06-15Merge branch 'bug-657' into testserver-stableBenny Baumann
2014-06-15Merge branch 'bug-807' into testserver-stableBenny Baumann
2014-06-15bug 807: escaping value from the database.bug-807Felix Dörre
2014-06-15Merge branch 'bug-1273' into testserver-stableBenny Baumann
2014-06-15bug 1273: Move the one "escapeshellarg" in a new row.Felix Dörre
2014-06-15bug 1273: use runCommand where former "echo"-syntax was usedFelix Dörre
2014-06-15bug 1273: replace backtick operators with shell_execFelix Dörre
2014-06-13Merge branch 'bug-807' into testserver-stableBenny Baumann
2014-06-13Merge branch 'release' into bug-807Benny Baumann
2014-06-13bug 807: copy md setting to new certificate when renewingFelix Dörre
2014-06-11Merge branch 'bug-1280' into testserver-stableBenny Baumann
2014-06-11bug-1280: Handle more different types of "languages":Felix Dörre
2014-06-08Merge branch 'release' into bug-657INOPIAE
2014-06-07Merge branch 'bug-929' into releaseBenny Baumann
2014-06-06Merge branch 'bug-1138' into releaseBenny Baumann
2014-06-06Merge branch 'bug-1275' into releaseBenny Baumann
2014-05-27Merge branch 'bug-1138' into testserver-stableMichael Tänzer
2014-05-27bug 1138: that "if" should contain a blockMichael Tänzer
2014-05-01Merge branch 'bug-1138' into testserver-stableMichael Tänzer
2014-05-01bug 1138: Avoid double escaping of $_SESSION['_config']['OU'] and fix XSSMichael Tänzer
2014-05-01bug 1138: Avoid double escaping.Michael Tänzer
2014-05-01bug 1138: Avoid double escaping in `description` which was stored into theMichael Tänzer
2014-05-01bug 1138: Avoid double escapingMichael Tänzer
2014-05-01Merge branch 'release' into bug-1138Benny Baumann
2014-04-30bug 1138: additional brackets for better readabilityBenny Baumann
2014-04-30bug 1138: Reorder fields to better show which variables belong togetherBenny Baumann
2014-04-30bug 1138: Whitespace changes and code formattingBenny Baumann
2014-04-30bug 1138: And yet some more sanitizing of database query argumentsBenny Baumann
2014-04-30bug 1138: Add quite some instances of mising escapingBenny Baumann
2014-04-30bug 1138: Be more paranoid regarding database query parametersBenny Baumann
2014-04-30bug 1138: Properly bail out to remark on missing ticket numberBenny Baumann
2014-04-29Merge branch 'bug-372' into testserver-stableMichael Tänzer
2014-04-29bug 372: `orgdomlink` has no `id` fieldbug-372Michael Tänzer