Code commits
phpBB Rhea
-
Marc 055d7658db7817b80d00b27d6e99cad961d0ee15
Merge branch 'prep-release-3.2.6' into 3.2.x
-
Marc 2575b499a38ccf2480d5da9d5c566f47a9e2d824 m
[prep-release-3.2.6] Update Changelog and add missing preg_match
- phpBB/docs/CHANGELOG.html (version 2575b499a38ccf2480d5da9d5c566f47a9e2d824)
- phpBB/phpbb/avatar/driver/upload.php (version 2575b499a38ccf2480d5da9d5c566f47a9e2d824)
-
Marc d54c43ae8f711e38d54ea4f1c0cfcb120e20a4ac m
[prep-release-3.2.6] Update changelog for 3.2.6
- phpBB/docs/CHANGELOG.html (version d54c43ae8f711e38d54ea4f1c0cfcb120e20a4ac)
-
Marc bec047586a09ec0bf4a8214edb66c452e2489851 m
[prep-release-3.2.6] Add migration to 3.2.6
- phpBB/phpbb/db/migration/data/v32x/v326.php (version bec047586a09ec0bf4a8214edb66c452e2489851)
-
Marc 37e5457dcfd9c9b3a07c1ec8e248f6b648235386 m
[prep-release-3.2.6] Update to 3.2.6 version
- build/build.xml (version 37e5457dcfd9c9b3a07c1ec8e248f6b648235386)
- phpBB/includes/constants.php (version 37e5457dcfd9c9b3a07c1ec8e248f6b648235386)
- phpBB/install/phpbbcli.php (version 37e5457dcfd9c9b3a07c1ec8e248f6b648235386)
- phpBB/install/schemas/schema_data.sql (version 37e5457dcfd9c9b3a07c1ec8e248f6b648235386)
-
Marc 1843e4f6b4e63b43de7da3fce0f7dd4c235853a9 m
[prep-release-3.2.6] Fix expected data in avatar manager test
- tests/avatar/manager_test.php (version 1843e4f6b4e63b43de7da3fce0f7dd4c235853a9)
-
Marc f75dd1628cd3add8f69128ff63e0c1cd296cd2a3 m
Merge pull request #48 from phpbb/ticket/security/228
[ticket/security/228] Add form token to login box -
Marc f3c4587d47af6aa3e39368653b542f97ed3428c6 m
Merge pull request #47 from phpbb/ticket/security/233
[ticket/security/233] Make smtp_password and smtp_username dynamic -
Marc db43961de63d169b6a3dbe6a75f421cd94f1e5fa m
Merge pull request #46 from phpbb/ticket/security/231
[ticket/security/231] Disable remote avatar functionality & add warning -
Marc 308dd49bb95b84345efb23e91ea03f9a91c5a2d4 m
Merge pull request #45 from phpbb/ticket/security/234
[ticket/security/234] Add URL validation for input fields & main site URL -
Marc 3075d2fecc9f5bb780bb478c0851a704c7f9b392 m
Merge pull request #44 from phpbb/ticket/security/235
Ticket/security/235 Wildcard char count in search -
Marc 36840fb2e44b272725b6fe89a2b57b984720bfeb m
Merge pull request #5576 from marc1706/ticket/16027
[ticket/16027] Force clearing of cache folder on install for functional -
Marc 2353ad11f2afe213e407842a9a9e1533c0de57b0 m
[ticket/security/235] Update search native tests
SECURITY-235- tests/search/native_test.php (version 2353ad11f2afe213e407842a9a9e1533c0de57b0)
-
Derky <derky@phpbb.com> b8368980162392bf9f97496ecec18abe2bd34fad m
[ticket/security/228] Add form token to login box
SECURITY-228- phpBB/includes/functions.php (version b8368980162392bf9f97496ecec18abe2bd34fad)
- phpBB/index.php (version b8368980162392bf9f97496ecec18abe2bd34fad)
- phpBB/styles/prosilver/template/index_body.html (version b8368980162392bf9f97496ecec18abe2bd34fad)
- phpBB/styles/prosilver/template/login_body.html (version b8368980162392bf9f97496ecec18abe2bd34fad)
-
Derky <derky@phpbb.com> da9910850a168f73c6b8dd8407a01f47d27ca1d8 m
[ticket/security/235] Only allow one wildcard in the search query to limit the database load
SECURITY-235- phpBB/phpbb/search/fulltext_native.php (version da9910850a168f73c6b8dd8407a01f47d27ca1d8)
-
Derky <derky@phpbb.com> 8a73eb5f0ff912454e6479539f972081e54baa1c m
[ticket/security/235] Use whitespace instead of word boundary regex to remove wildcards
This fixes removing the wildcard in the following search query: *.test
SECURITY-235- phpBB/phpbb/search/fulltext_native.php (version 8a73eb5f0ff912454e6479539f972081e54baa1c)
-
Derky <derky@phpbb.com> fd195fba210c8625e968ef5553e61864747c8d44 m
[ticket/security/235] Remove non trailing wildcards from search keywords
Database indexes are only used if wildcards are used at the end.
SECURITY-235- phpBB/phpbb/search/fulltext_native.php (version fd195fba210c8625e968ef5553e61864747c8d44)
-
Marc 58f33921b56c3524e5c2b2c15bbf0dddea1ff461 m
[ticket/16027] Force clearing of cache folder on install for functional
PHPBB3-16027- tests/test_framework/phpbb_functional_test_case.php (version 58f33921b56c3524e5c2b2c15bbf0dddea1ff461)
-
Marc 71d66832c019346718e70b18923fd717775c2ca3 m
[ticket/security/233] Fix invalid INSERT INTO
SECURITY-233- phpBB/install/schemas/schema_data.sql (version 71d66832c019346718e70b18923fd717775c2ca3)
-
Marc 8e5a0c81ef118c7d88e10fb7d793a36e9204aea8 m
[ticket/security/233] Make smtp_password and smtp_username dynamic
SECURITY-233- phpBB/install/schemas/schema_data.sql (version 8e5a0c81ef118c7d88e10fb7d793a36e9204aea8)
- phpBB/phpbb/db/migration/data/v32x/smtp_dynamic_data.php (version 8e5a0c81ef118c7d88e10fb7d793a36e9204aea8)
- phpBB/phpbb/install/helper/config.php (version 8e5a0c81ef118c7d88e10fb7d793a36e9204aea8)
-
Marc dc5a167c429a3813d66b0ae3d14242650466cac6 m
[ticket/security/231] Disable remote avatar functionality & add warning
SECURITY-231- phpBB/includes/acp/acp_board.php (version dc5a167c429a3813d66b0ae3d14242650466cac6)
- phpBB/language/en/acp/board.php (version dc5a167c429a3813d66b0ae3d14242650466cac6)
- phpBB/phpbb/avatar/manager.php (version dc5a167c429a3813d66b0ae3d14242650466cac6)
- phpBB/phpbb/db/migration/data/v32x/disable_remote_avatar.php (version dc5a167c429a3813d66b0ae3d14242650466cac6)
-
Marc f1c2e26f0af688240f915e3d8d2aab428f0ff76f m
[ticket/security/234] Add test for URL validation
SECURITY-234- tests/functions_acp/validate_config_vars_test.php (version f1c2e26f0af688240f915e3d8d2aab428f0ff76f)
-
Marc 84ea5d71481c450dfe1f4a70a10877d4469c1329 m
[ticket/security/234] Add URL validation for input fields
SECURITY-234- phpBB/includes/acp/acp_board.php (version 84ea5d71481c450dfe1f4a70a10877d4469c1329)
- phpBB/includes/functions_acp.php (version 84ea5d71481c450dfe1f4a70a10877d4469c1329)
- phpBB/language/en/acp/common.php (version 84ea5d71481c450dfe1f4a70a10877d4469c1329)
-
Derky <derky@phpbb.com> 56060caa4c44620929b6e17fe4622343750ad302 m
[ticket/security/235] Apply wildcard char count patch
SECURITY-235- phpBB/phpbb/search/fulltext_native.php (version 56060caa4c44620929b6e17fe4622343750ad302)