1
0
Fork 0
mirror of https://github.com/sbrl/Pepperminty-Wiki.git synced 2024-12-22 13:45:02 +00:00
Commit graph

11 commits

Author SHA1 Message Date
227a7ac662
feature-upload: fix potential XSS attacks 2021-09-03 00:42:36 +01:00
f400da6dce
Page renderer: Automatically run htmlentities() on all titles 2021-09-02 21:34:40 +01:00
cfd087d919
Add MPL 2.0 short header to core code files 2020-09-23 23:22:39 +01:00
d9ddb504bf
Fix typo in the name of the didyoumean index (which is disabled by default).
Admins need to manually rename `didyoumeaninddex.sqlite` → 
`didyoumeanindex.sqlite`
2020-08-18 15:41:14 +01:00
3652c20662
Fix $env->is_secure detection 2020-07-28 19:51:56 +01:00
7d93aa6a10
Overhaul the way we use setcookie()
- Use SameSite=Strict to avoid issues in modern browsers & prevent 
session-stealing attacks
 - Use Secure when requests run over HTTPS by default to avoid 
downgrade-based session-stealing attacks
 - Add warning for PHP <= 7.2, as it doesn't support SameSite in 
setcookie().
2020-07-28 19:40:22 +01:00
f632c0907c
Integrate didyoumean into the main search engine, but it's crashing.
We're getting there though!
2020-03-15 17:54:27 +00:00
1602fab2c3
Correctly handle utf-8 in email_user() 2019-12-23 17:39:18 +00:00
c96e3108aa
Set user agent string when making requests 2019-08-26 15:27:24 +01:00
edf1be5801
Fix a *huge* number of bugs in the new search system, but it's not ready just yet 2019-08-22 21:38:17 +01:00
f63553fb92
Split core.php up into 16(!) different files.
This has been a looong time in coming. 1.9K links is _far_ too much for 
any file.
2019-03-02 16:45:34 +00:00