• last updated 4 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
file upgrade-1.1.3d4-1.1.3d5.sql was initially added on branch oacs-5-9.

Alter caveman style booleans (type character(1)) to real SQL boolean types.

file upgrade-0.11d2-0.11d3.sql was initially added on branch oacs-5-9.

Alter caveman style booleans (type character(1)) to real SQL boolean types.

file upgrade-5.9.0-5.9.1d1.sql was initially added on branch oacs-5-9.

- make update script more robust

Alter caveman style booleans (type character(1)) to real SQL boolean types.

    • -3
    • +3
    /openacs-4/packages/forums/forums.info
file upgrade-1.3d12-1.3d13.sql was initially added on branch oacs-5-9.

Alter caveman style booleans (type character(1)) to real SQL boolean types.

file upgrade-2.9.0-2.9.1d1.sql was initially added on branch oacs-5-9.

- harding page contract

- fix trim operation

- handle leading / returned by the hardened apidoc::sanitize_path function

- don't report data source errors with status code 200 (use 422 instead)

- handle invalid input message from bug-tracker via datasource error (not perfect, but better)

- avoid potential recursive loop in error handler

- hardening page contract to avoid attack vectors

- stenghten page contract to avoid attack vactors

- protect against DOS attack with large values of m

- hardening page contract to prevent potential XSS attack

- protect against a potential XSS attack

- prevent potential sql injection attack

- hardening pacge contract (fix potential XSS attack)

    • -2
    • +2
    /openacs-4/packages/calendar/www/view.tcl
- fix potential traversal attack

- hardinging page contracts

    • -4
    • +3
    /openacs-4/packages/search/www/search.tcl
- improve error message and error handling on ad_script_abort

    • -5
    • +8
    /openacs-4/packages/xowiki/tcl/xowiki-procs.tcl
- hardening page contracts

- make sure, url is always set

- fix robustness on mangeled query parameters

- strengthen page contract