headers
sylvieg | 1 Nov 2006 17:55
Picon

tiki/lib/filegals filegallib.php,1.37,1.38

Update of /cvsroot/tikiwiki/tiki/lib/filegals
In directory sc8-pr-cvs10.sourceforge.net:/tmp/cvs-serv4800/lib/filegals

Modified Files:
	filegallib.php 
Log Message:
some mroe galleryId for the pod feature

Index: filegallib.php
===================================================================
RCS file: /cvsroot/tikiwiki/tiki/lib/filegals/filegallib.php,v
retrieving revision 1.37
retrieving revision 1.38
diff -u -d -r1.37 -r1.38
--- filegallib.php	30 Oct 2006 15:33:28 -0000	1.37
+++ filegallib.php	1 Nov 2006 16:55:41 -0000	1.38
 <at>  <at>  -79,7 +79,7  <at>  <at> 

 		$search_data = '';
 		if ($tikilib->get_preference('fgal_enable_auto_indexing','y') != 'n') {
-			$search_data = $this->get_search_text_for_data($data,$path,$type);
+			$search_data = $this->get_search_text_for_data($data,$path,$type, $galleryId);
 			if ($search_data === false)
 				return false;
 		}			
 <at>  <at>  -463,7 +463,7  <at>  <at> 

 		$search_data = '';
 		if ($tikilib->get_preference("fgal_enable_auto_indexing") != 'n') {
-			$search_data = $this->get_search_text_for_data($data,$path,$type);
(Continue reading)

Permalink | Reply | 0 comments |
headers
ohertel | 1 Nov 2006 18:34
Picon
Gravatar

tiki tiki-setup_base.php,1.78.2.51,1.78.2.52

Update of /cvsroot/tikiwiki/tiki
In directory sc8-pr-cvs10.sourceforge.net:/tmp/cvs-serv20417

Modified Files:
      Tag: BRANCH-1-9
	tiki-setup_base.php 
Log Message:
[sec] security fix: let's have at least 1 character for type checked variables, as empty variables are
typeless and we don't want them anyway. fixes  http://dev.tikiwiki.org/tiki-view_tracker_item.php?trackerId=5&offset=0&sort_mode=lastModif_desc&itemId=927

Index: tiki-setup_base.php
===================================================================
RCS file: /cvsroot/tikiwiki/tiki/tiki-setup_base.php,v
retrieving revision 1.78.2.51
retrieving revision 1.78.2.52
diff -u -d -r1.78.2.51 -r1.78.2.52
--- tiki-setup_base.php	26 Sep 2006 09:45:14 -0000	1.78.2.51
+++ tiki-setup_base.php	1 Nov 2006 17:33:58 -0000	1.78.2.52
 <at>  <at>  -102,12 +102,12  <at>  <at> 
 }

 // mose : simulate strong var type checking for http vars
-$patterns['int']   = "/^[0-9]*$/"; // *Id
-$patterns['intSign']   = "/^[-+]?[0-9]*$/"; // *offset,
-$patterns['char']  = "/^[-,_a-zA-Z0-9]*$/"; // sort_mode, 
+$patterns['int']   = "/^[0-9]+$/"; // *Id
+$patterns['intSign']   = "/^[-+]?[0-9]+$/"; // *offset,
+$patterns['char']  = "/^[-,_a-zA-Z0-9]+$/"; // sort_mode, 
 $patterns['string']  = "/^[^<>\";#]*$/"; // find, and such extended chars
-$patterns['vars']  = "/^[-_a-zA-Z0-9]*$/"; // for variable keys
(Continue reading)

Permalink | Reply | 0 comments |
headers
ohertel | 1 Nov 2006 18:40
Picon
Gravatar

tiki tiki-setup_base.php,1.78.2.52,1.78.2.53

Update of /cvsroot/tikiwiki/tiki
In directory sc8-pr-cvs10.sourceforge.net:/tmp/cvs-serv23321

Modified Files:
      Tag: BRANCH-1-9
	tiki-setup_base.php 
Log Message:
[sec] security fix: fix for XSS mentioned in http://dev.tikiwiki.org/tiki-view_tracker_item.php?trackerId=5&offset=0&sort_mode=lastModif_desc&itemId=927

Index: tiki-setup_base.php
===================================================================
RCS file: /cvsroot/tikiwiki/tiki/tiki-setup_base.php,v
retrieving revision 1.78.2.52
retrieving revision 1.78.2.53
diff -u -d -r1.78.2.52 -r1.78.2.53
--- tiki-setup_base.php	1 Nov 2006 17:33:58 -0000	1.78.2.52
+++ tiki-setup_base.php	1 Nov 2006 17:40:52 -0000	1.78.2.53
 <at>  <at>  -150,6 +150,7  <at>  <at> 
 $vartype['actpass'] = 'string'; // remind password page
 $vartype['user'] = 'string'; // remind password page
 $vartype['remind'] = 'string'; // remind password page
+$vartype['url'] = 'url';
 // galaxia
 $vartype['aid'] = 'int';
 $vartype['description'] = 'string';

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
(Continue reading)

Permalink | Reply | 0 comments |
headers
ohertel | 1 Nov 2006 21:48
Picon
Gravatar

tiki tiki-setup_base.php,1.78.2.53,1.78.2.54

Update of /cvsroot/tikiwiki/tiki
In directory sc8-pr-cvs10.sourceforge.net:/tmp/cvs-serv4468

Modified Files:
      Tag: BRANCH-1-9
	tiki-setup_base.php 
Log Message:
[sec] type check improvement (empty parameters), cleanup

Index: tiki-setup_base.php
===================================================================
RCS file: /cvsroot/tikiwiki/tiki/tiki-setup_base.php,v
retrieving revision 1.78.2.53
retrieving revision 1.78.2.54
diff -u -d -r1.78.2.53 -r1.78.2.54
--- tiki-setup_base.php	1 Nov 2006 17:40:52 -0000	1.78.2.53
+++ tiki-setup_base.php	1 Nov 2006 20:48:47 -0000	1.78.2.54
 <at>  <at>  -102,25 +102,27  <at>  <at> 
 }

 // mose : simulate strong var type checking for http vars
-$patterns['int']   = "/^[0-9]+$/"; // *Id
-$patterns['intSign']   = "/^[-+]?[0-9]+$/"; // *offset,
-$patterns['char']  = "/^[-,_a-zA-Z0-9]+$/"; // sort_mode, 
+$patterns['int']   = "/^[0-9]*$/"; // *Id
+$patterns['intSign']   = "/^[-+]?[0-9]*$/"; // *offset,
+$patterns['char']  = "/^[-,_a-zA-Z0-9]*$/"; // sort_mode, 
 $patterns['string']  = "/^[^<>\";#]*$/"; // find, and such extended chars
-$patterns['vars']  = "/^[-_a-zA-Z0-9]+$/"; // for variable keys
-$patterns['hash'] = "/^[a-z0-9]+$/"; // for hash reqId in live support
(Continue reading)

Permalink | Reply | 0 comments |
headers
ohertel | 1 Nov 2006 22:09
Picon
Gravatar

tiki/lib tikidblib.php,1.11.2.7,1.11.2.8

Update of /cvsroot/tikiwiki/tiki/lib
In directory sc8-pr-cvs10.sourceforge.net:/tmp/cvs-serv13090/lib

Modified Files:
      Tag: BRANCH-1-9
	tikidblib.php 
Log Message:
[fix] removed debug code

Index: tikidblib.php
===================================================================
RCS file: /cvsroot/tikiwiki/tiki/lib/tikidblib.php,v
retrieving revision 1.11.2.7
retrieving revision 1.11.2.8
diff -u -d -r1.11.2.7 -r1.11.2.8
--- tikidblib.php	7 Nov 2005 16:28:11 -0000	1.11.2.7
+++ tikidblib.php	1 Nov 2006 21:09:02 -0000	1.11.2.8
 <at>  <at>  -157,9 +157,10  <at>  <at> 
     } else {
       echo $outp;
     }
-    echo "<pre>";
-    var_dump(debug_backtrace());
-    echo "</pre>";
+    // -- debugging stuff:
+    // echo "<pre>";
+    // var_dump(debug_backtrace());
+    // echo "</pre>";
     die;
 }
(Continue reading)

Permalink | Reply | 0 comments |
headers
ohertel | 1 Nov 2006 22:18
Picon
Gravatar

tiki/lib tikidblib.php,1.22,1.23

Update of /cvsroot/tikiwiki/tiki/lib
In directory sc8-pr-cvs10.sourceforge.net:/tmp/cvs-serv17681/lib

Modified Files:
	tikidblib.php 
Log Message:
[fix] removed debug code

Index: tikidblib.php
===================================================================
RCS file: /cvsroot/tikiwiki/tiki/lib/tikidblib.php,v
retrieving revision 1.22
retrieving revision 1.23
diff -u -d -r1.22 -r1.23
--- tikidblib.php	16 Dec 2005 16:43:55 -0000	1.22
+++ tikidblib.php	1 Nov 2006 21:18:33 -0000	1.23
 <at>  <at>  -177,9 +177,10  <at>  <at> 
     } else {
       echo $outp;
     }
-    echo "<pre>";
-    var_dump(debug_backtrace());
-    echo "</pre>";
+    // -- debugging stuff:
+    // echo "<pre>";
+    // var_dump(debug_backtrace());
+    // echo "</pre>";
     die;
 }
(Continue reading)

Permalink | Reply | 0 comments |
headers
ohertel | 1 Nov 2006 22:23
Picon
Gravatar

tiki tiki-setup_base.php,1.106,1.107

Update of /cvsroot/tikiwiki/tiki
In directory sc8-pr-cvs10.sourceforge.net:/tmp/cvs-serv19767

Modified Files:
	tiki-setup_base.php 
Log Message:
[sec] type check improvement (empty parameters), cleanup

Index: tiki-setup_base.php
===================================================================
RCS file: /cvsroot/tikiwiki/tiki/tiki-setup_base.php,v
retrieving revision 1.106
retrieving revision 1.107
diff -u -d -r1.106 -r1.107
--- tiki-setup_base.php	22 Oct 2006 03:21:37 -0000	1.106
+++ tiki-setup_base.php	1 Nov 2006 21:23:02 -0000	1.107
 <at>  <at>  -106,7 +106,6  <at>  <at> 
 // mose : simulate strong var type checking for http vars
 $patterns['int']   = "/^[0-9]*$/"; // *Id
 $patterns['intSign']   = "/^[-+]?[0-9]*$/"; // *offset,
-$patterns['hex']   = "/^[-0-9a-fA-F]*$/";
 $patterns['char']  = "/^[-,_a-zA-Z0-9]*$/"; // sort_mode, 
 $patterns['string']  = "/^[^<>\";#]*$/"; // find, and such extended chars
 $patterns['stringlist']  = "/^[^<>\"#]*$/"; // to, cc, bcc (for string lists like: user1;user2;user3)
 <at>  <at>  -114,28 +113,28  <at>  <at> 
 $patterns['hash'] = "/^[a-z0-9]*$/"; // for hash reqId in live support
 $patterns['url'] = "/^https?:\/\/[^<>\"']*$/"; // needed for the htmlpage inclusion in tiki-editpage

-$vartype['id'] = 'int';
-$vartype['forumId'] = 'int';
(Continue reading)

Permalink | Reply | 0 comments |
headers
sylvieg | 1 Nov 2006 23:54
Picon

tiki/db tiki-1.9-mysql.sql, 1.38.2.90, 1.38.2.91 tiki-1.9-oci8.sql, 1.28.2.81, 1.28.2.82 tiki-1.9-pgsql.sql, 1.28.2.85, 1.28.2.86 tiki-1.9-sqlite.sql, 1.28.2.80, 1.28.2.81 tiki-1.9-sybase.sql, 1.28.2.83, 1.28.2.84 tiki.sql, 1.214.2.173, 1.214.2.174

Update of /cvsroot/tikiwiki/tiki/db
In directory sc8-pr-cvs10.sourceforge.net:/tmp/cvs-serv30769/db

Modified Files:
      Tag: BRANCH-1-9
	tiki-1.9-mysql.sql tiki-1.9-oci8.sql tiki-1.9-pgsql.sql 
	tiki-1.9-sqlite.sql tiki-1.9-sybase.sql tiki.sql 
Log Message:
change isset to empty for sort_mode

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
Permalink | Reply | 0 comments |
headers
sylvieg | 1 Nov 2006 23:54
Picon

tiki messu-archive.php, 1.1.2.5, 1.1.2.6 messu-mailbox.php, 1.13.2.9, 1.13.2.10 messu-sent.php, 1.1.2.5, 1.1.2.6 tiki-admin_banning.php, 1.7.2.4, 1.7.2.5 tiki-admin_calendars.php, 1.15.2.17, 1.15.2.18 tiki-admin_categories.php, 1.27.2.10, 1.27.2.11 tiki-admin_chart_items.php, 1.9.2.3, 1.9.2.4 tiki-admin_charts.php, 1.10.2.3, 1.10.2.4 tiki-admin_chat.php, 1.9.2.4, 1.9.2.5 tiki-admin_content_templates.php, 1.11.2.8, 1.11.2.9 tiki-admin_cookies.php, 1.9.2.5, 1.9.2.6 tiki-admin_drawings.php, 1.10.2.4, 1.10.2.5 tiki-admin_dsn.php, 1.6.2.5, 1.6.2.6 tiki-admin_external_wikis.php, 1.7.2.4, 1.7.2.5 tiki-admin_forums.php, 1.28.2.8, 1.28.2.9 tiki-admin_hotwords.php, 1.11.2.4, 1.11.2.5 tiki-admin_html_page_content.php, 1.9.2.3, 1.9.2.4 tiki-admin_html_pages.php, 1.9.2.4, 1.9.2.5 tiki-admin_include_trackers.php, 1.9.2.6, 1.9.2.7 tiki-admin_include_wikiatt.php, 1.1.4.1, 1.1

Update of /cvsroot/tikiwiki/tiki
In directory sc8-pr-cvs10.sourceforge.net:/tmp/cvs-serv30769

Modified Files:
      Tag: BRANCH-1-9
	messu-archive.php messu-mailbox.php messu-sent.php 
	tiki-admin_banning.php tiki-admin_calendars.php 
	tiki-admin_categories.php tiki-admin_chart_items.php 
	tiki-admin_charts.php tiki-admin_chat.php 
	tiki-admin_content_templates.php tiki-admin_cookies.php 
	tiki-admin_drawings.php tiki-admin_dsn.php 
	tiki-admin_external_wikis.php tiki-admin_forums.php 
	tiki-admin_hotwords.php tiki-admin_html_page_content.php 
	tiki-admin_html_pages.php tiki-admin_include_trackers.php 
	tiki-admin_include_wikiatt.php tiki-admin_menu_options.php 
	tiki-admin_menus.php tiki-admin_newsletter_subscriptions.php 
	tiki-admin_newsletters.php tiki-admin_notifications.php 
	tiki-admin_polls.php tiki-admin_quicktags.php 
	tiki-admin_rssmodules.php tiki-admin_shoutbox_words.php 
	tiki-admin_structures.php tiki-admin_survey_questions.php 
	tiki-admin_surveys.php tiki-admin_tracker_fields.php 
	tiki-admin_trackers.php tiki-admingroups.php 
	tiki-adminusers.php tiki-assignpermission.php 
	tiki-assignuser.php tiki-browse_categories.php 
	tiki-browse_gallery.php tiki-browse_image.php tiki-charts.php 
	tiki-directory_add_site.php 
	tiki-directory_admin_categories.php 
	tiki-directory_admin_related.php 
	tiki-directory_admin_sites.php tiki-directory_browse.php 
	tiki-directory_ranking.php tiki-directory_search.php
(Continue reading)

Permalink | Reply | 0 comments |
headers
ohertel | 2 Nov 2006 00:16
Picon
Gravatar

tiki/lib/smarty_tiki modifier.iconify.php,1.4,1.5

Update of /cvsroot/tikiwiki/tiki/lib/smarty_tiki
In directory sc8-pr-cvs10.sourceforge.net:/tmp/cvs-serv8539/lib/smarty_tiki

Modified Files:
	modifier.iconify.php 
Log Message:
updated links to new icons

Index: modifier.iconify.php
===================================================================
RCS file: /cvsroot/tikiwiki/tiki/lib/smarty_tiki/modifier.iconify.php,v
retrieving revision 1.4
retrieving revision 1.5
diff -u -d -r1.4 -r1.5
--- modifier.iconify.php	18 May 2005 11:01:44 -0000	1.4
+++ modifier.iconify.php	1 Nov 2006 23:16:20 -0000	1.5
 <at>  <at>  -18,10 +18,10  <at>  <at> 
 {

   $string=strtolower(substr($string,strlen($string)-3));
-  if(file_exists("img/icn/$string".".gif")) {
-    return "<img border='0' src='img/icn/${string}.gif' alt='icon' />";
+  if(file_exists("pics/icons/mime/$string".".png")) {
+    return "<img border='0' src='pics/icons/mime/${string}.png' alt='icon' width='16' height='16' />";
   } else {
-    return "<img border='0' src='img/icn/else.gif' alt='icon' />";
+    return "<img border='0' src='pics/icons/mime/default.png' alt='icon' width='16' height='16' />";
   }     
 	
 }
(Continue reading)

Permalink | Reply | 0 comments |

Gmane