Sat, 19 Jan 2008 00:47:52 -0500 Not sure if $taboo was getting sanitized or not. Possibly an SQL injection vulnerability that allows maliciously crafted group names to inject SQL at a later date when the group CP is loaded. Unconfirmed, theoretical fix.
Dan [Sat, 19 Jan 2008 00:47:52 -0500] rev 447
Not sure if $taboo was getting sanitized or not. Possibly an SQL injection vulnerability that allows maliciously crafted group names to inject SQL at a later date when the group CP is loaded. Unconfirmed, theoretical fix.
Fri, 18 Jan 2008 10:35:33 -0500 Removed all PostgreSQL support from the installer as per http://enanocms.org/News:1200114064; installer support for Postgres is available in the 1.1 branch now
Dan [Fri, 18 Jan 2008 10:35:33 -0500] rev 446
Removed all PostgreSQL support from the installer as per http://enanocms.org/News:1200114064; installer support for Postgres is available in the 1.1 branch now
Wed, 23 Jan 2008 19:36:16 -0500 Fixed case-sensitive file extensions
Dan [Wed, 23 Jan 2008 19:36:16 -0500] rev 445
Fixed case-sensitive file extensions
Wed, 09 Jan 2008 22:23:09 -0500 PHP4 fix: sidebar missing in installer UI: problem was wrongly named constructor for templateIndividualSafe
Dan [Wed, 09 Jan 2008 22:23:09 -0500] rev 444
PHP4 fix: sidebar missing in installer UI: problem was wrongly named constructor for templateIndividualSafe
(0) -300 -100 -30 -10 -4 +4 +10 +30 +100 +300 tip