Sat, 19 Jan 2008 00:47:52 -0500 | Dan | Not sure if $taboo was getting sanitized or not. Possibly an SQL injection vulnerability that allows maliciously crafted group names to inject SQL at a later date when the group CP is loaded. Unconfirmed, theoretical fix. | file | diff | annotate |
Tue, 18 Dec 2007 23:44:55 -0500 | Dan | Many changes. Installer with PostgreSQL is broken badly and will be for some time. | file | diff | annotate |
Wed, 12 Dec 2007 21:37:23 -0500 | Dan | Rebrand as 1.0.3 (Dyrad) | file | diff | annotate |
Sat, 20 Oct 2007 21:46:05 -0400 | Dan | SECURITY: Fixed possible SQL injection in PageUtils page protection; general cleanup of PageUtils; blocked using Project: prefix for page URL strings | file | diff | annotate |