summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2009-09-01Merge branch 'master' of git@github.com:gallery/gallery3Bharat Mediratta
2009-09-01Allow the RSS feed page size to be customizeable, up to 100 items (toBharat Mediratta
mitigate DoS attacks). Have PicLens request a 100-item page to mitigate the bug where it refuses to load the 2nd page. Mitigates #23.
2009-09-01Remove unused l10n messageAndy Staudacher
2009-09-01Add missing mark_clean() for t() calls with %attr parameter.Andy Staudacher
2009-09-01Fix bug #522 - Handle "save settings" correctly in the "share translations" ↵Andy Staudacher
form.
2009-09-01Merge commit 'upstream/master'Andy Staudacher
2009-09-01Update XSS scanner golden fileAndy Staudacher
2009-09-01XSS / style fixes for newly detected issues (after fixing XSS scanner)Andy Staudacher
2009-09-01XSS escape in form helper and forge where missing.Andy Staudacher
2009-09-01Fix XSS in tags JSAndy Staudacher
2009-09-01Remove debugging codeAndy Staudacher
2009-09-01Fix bug in XSS scanner for <script> block @ position 0 of inline_htmlAndy Staudacher
2009-08-31Add an icon to the context menu option.Bharat Mediratta
2009-08-31Set CSS cursor to hand for jQuery UI ui-state-hover elements. Fixes all but ↵Chad Kieffer
progress bar cursor. #669
2009-08-31Use min-height to hold the banner's height. #706.Chad Kieffer
2009-08-31Revert 12903f59965b6c95e91ffa8210adc7f18e0b4c03 overflow: auto hides the ↵Chad Kieffer
site menu drop downs.
2009-08-31Merge branch 'master' of git@github.com:gallery/gallery3Chad Kieffer
2009-08-31Hold the banner's height when header text is set or the logo's yanked.Chad Kieffer
2009-08-31Don't include Make this the album's cover in context menu's for albums. #705Chad Kieffer
2009-08-31Update XSS test golden fileAndy Staudacher
2009-08-31Merge branch 'master' of git@github.com:gallery/gallery3Chad Kieffer
2009-08-31Merge commit 'upstream/master'Andy Staudacher
2009-08-31Fix XSS vectors in HTML attributes (mostly t() calls)Andy Staudacher
2009-08-31Add icons to context menu for albums. I'm open to other options, if folks ↵Chad Kieffer
think there's something better in the jQuery UI themeroller set.
2009-08-31Escape single quotes in the password so that we don't break our configBharat Mediratta
syntax. Related to (but unclear that it fixes) ticket #650.
2009-08-31Fix typo in descriptionAndy Staudacher
2009-08-31Suppress errors to mysql_connect(). We had this before, but itBharat Mediratta
appears to have been accidentally removed in 177a854d
2009-08-31Add XSS check for HTML attributesAndy Staudacher
2009-08-31Merge branch 'master' of git@github.com:gallery/gallery3Bharat Mediratta
2009-08-31Stay on the same page when editing albums/movies/photos. Fixes ticketBharat Mediratta
2009-08-31Add 'organize album' to the context menu.Bharat Mediratta
2009-08-31Add XSS check to ensure that html::js_string() is not preceded by a quote.Andy Staudacher
2009-08-31XSS review fixes (mostly adding missing html::mark_clean()) calls.Andy Staudacher
2009-08-31Adding XSS test for href="javascript: and onclick="..."Andy Staudacher
2009-08-31Rename mark_safe() to mark_clean()Andy Staudacher
2009-08-31Merge commit 'upstream/master'Andy Staudacher
2009-08-30Fix double -> single quotes (::js_string returns a double-quotes delimited ↵Andy Staudacher
string)
2009-08-30Updating golden XSS-test data fileAndy Staudacher
2009-08-30(mostly harmless) XSS fix in server addAndy Staudacher
2009-08-30XSS fixes in admin_comments.html.phpAndy Staudacher
2009-08-30Check for href="<?= $foo ?>" (malicious "javascript:..." string)Andy Staudacher
2009-08-30Updating XSS golden fileAndy Staudacher
2009-08-30Merge commit 'upstream/master'Andy Staudacher
Conflicts: modules/gallery/views/l10n_client.html.php modules/organize/views/organize_tree.html.php modules/server_add/helpers/server_add_event.php
2009-08-30Tabs to spaces cleanupAndy Staudacher
2009-08-30Merge branch 'master' of git@github.com:/gallery/gallery3Bharat Mediratta
2009-08-30Finish this pass at the Admin Maintenance view. Re-introduce status icons, ↵Chad Kieffer
put Cancel All, Delete All buttons in the action heading cell.
2009-08-30Oops, fix up the show argument that I "fixed" in the last change.Bharat Mediratta
2009-08-30Use $theme->item() instead of $item.Bharat Mediratta
2009-08-30Merge branch 'master' of git@github.com:/gallery/gallery3Bharat Mediratta
2009-08-30Move header and footer into page.html.php since they're not included in any ↵Chad Kieffer
other view template.
generated by cgit v1.2.3 (git 2.46.0) at 2025-10-17 18:35:29 +0000