Dan [Sat, 23 Jun 2007 09:55:58 -0400] rev 15
Fixed complicated SQL injection vulnerability in URL handler, updated license info for Tigra Tree Menu, and killed one XSS vulnerability
Dan [Fri, 22 Jun 2007 18:42:26 -0400] rev 14
Security: NUL characters are now stripped from GPC; several code readability standards changes
Dan [Fri, 22 Jun 2007 10:31:59 -0400] rev 13
Installer actually works now on dev servers; minor language change in template.php; code cleanliness fix in sessions.php
Dan [Fri, 22 Jun 2007 10:16:14 -0400] rev 12
Fixed problems with installer and config file (chdir and error-connecting-to-MySQL issues)
Dan [Thu, 21 Jun 2007 12:00:16 -0400] rev 11
Finalized permissions on files and directories; adding PHP shutoff button (actual shutoff not implemented)
Dan [Tue, 19 Jun 2007 18:41:10 -0400] rev 10
Added option in installer to not let admins embed PHP
dan@fuhry [Sat, 16 Jun 2007 18:47:06 -0400] rev 9
Following fixes: admin theme supports <button> tag now, PageProcessor can eval now, and SpecialAdmin.php plugin can no longer be disabled