| #
5d8c9d42 |
| 06-Jun-2026 |
Andreas Gohr <andi@splitbrain.org> |
(security) Require a security token for the lock AJAX call
The lock AJAX call refreshes the edit lock and saves a draft, both of
which change server state. It was gated only by the write ACL and,
un
(security) Require a security token for the lock AJAX call
The lock AJAX call refreshes the edit lock and saves a draft, both of
which change server state. It was gated only by the write ACL and,
unlike the sibling draft-delete call, did not verify a security token
(low severity).
A cross-site forged POST against a logged-in user could, within that
user's own write permissions, take or hold an edit lock and store
attacker-controlled draft content under their name.
The call now verifies the security token before taking the lock or
saving the draft. Logged out users are unaffected, as no token is
issued or checked for them. The edit lock timer now always sends the
token with its refresh request, including when draft saving is
disabled.
show more ...
|
| #
e8c9256a |
| 06-Jun-2026 |
Andreas Gohr <andi@splitbrain.org> |
(security) Clean the media upload namespace in AJAX upload
The namespace passed to the AJAX backend was not cleaned correctly,
resulting in two separate issues.
1. Theoretical Reflected XSS
The
(security) Clean the media upload namespace in AJAX upload
The namespace passed to the AJAX backend was not cleaned correctly,
resulting in two separate issues.
1. Theoretical Reflected XSS
The raw namespace was reflected into the JSON response and injected
into the mediamanager DOM. However since the media manager only
passes cleaned namespaces to AJAX and the ajax backen only returns
JSON, this issue was not exploitable.
2. Cross-namespace ACL bypass (medium severity)
The uncleaned namespace was directly used to check ACLs. In a wiki
where a user has upload permission in a namespace above a namespace
where they don't have permissions (eg. upload allowed in :user:*, but
upload denied in :user:secret:*) they could pass an upper case
namespace (eg :user:SECRET) - no ACL does exist for this upper case
namespace and the acl of the namespace above applies (:user).
When the file is written a cleanID is applied to the full filename,
turning the uppercase namespace into lowercase.
This can allow users to write into a namespace they normally should
not be allowed to write to, but it does require upload permissions in
a higher namespace.
show more ...
|
| #
8788dbbd |
| 06-May-2026 |
splitbrain <86426+splitbrain@users.noreply.github.com> |
�� Rector and PHPCS fixes
|
| #
e1272c08 |
| 07-Apr-2026 |
Andreas Gohr <andi@splitbrain.org> |
SearchIndex: add backward compatibility wrappers
Add deprecated wrappers for idx_* and ft_* functions that were removed
when inc/indexer.php and inc/fulltext.php were replaced by the new
Search clas
SearchIndex: add backward compatibility wrappers
Add deprecated wrappers for idx_* and ft_* functions that were removed
when inc/indexer.php and inc/fulltext.php were replaced by the new
Search classes. These wrappers delegate to the new architecture and
ensure existing plugins continue to work.
Deprecated standalone functions: idx_get_indexer, idx_getIndex,
idx_lookup, idx_listIndexLengths, idx_indexLengths, ft_pageSearch,
ft_backlinks, ft_mediause, ft_pageLookup, ft_snippet, ft_pagesorter,
ft_snippet_re_preprocess, ft_queryParser.
Deprecated methods on Indexer: lookupKey, getPages, addMetaKeys,
renameMetaValue, getPID, lookup.
Also migrates remaining core callers (Ajax, FeedCreator, ApiCore) to
use the new classes directly and fixes a UTF-8 case folding bug in
MetadataSearch title lookups.
show more ...
|
| #
7f394dd6 |
| 05-Apr-2026 |
Andreas Gohr <andi@splitbrain.org> |
Merge branch 'master' into searchIndex-finish
* master: (55 commits)
Translation update (pt-br)
Bump phpseclib/phpseclib from 3.0.49 to 3.0.50
�� Update deleted files
strict value comparison
Merge branch 'master' into searchIndex-finish
* master: (55 commits)
Translation update (pt-br)
Bump phpseclib/phpseclib from 3.0.49 to 3.0.50
�� Update deleted files
strict value comparison in auth session check. fixes #4602
Translation update (pt-br)
Translation update (pt-br)
remove utf8_encode() from authad plugin
todo checker action: ignore vendor
updated rector and applied it
removed another php 7.4 workaround
removed an old PHP 5 workaround in HTTPClient
remove checks for mbstring.func_overload
removed php 8 polyfills
ignore HTML validation issue with skipped headline levels
declare PrefCookie constant visibility
update slika which fixes another php 8.5 deprecation issue
fix http tests
fix destructuring false returns from changelog functions
avoid using null as cache key
Fix deprecation warning in UTF8/Conversion
...
show more ...
|
| #
093fe67e |
| 07-Mar-2026 |
Andreas Gohr <andi@splitbrain.org> |
updated rector and applied it
|
| #
9df9f0c8 |
| 27-Oct-2025 |
Andreas Gohr <gohr@cosmocode.de> |
Merge branch 'master' into searchIndex-finish
There were a lot of conflicts to resolve. Not all of them may have been
resolved correctly...
* master: (1094 commits)
Login accessibility improvemen
Merge branch 'master' into searchIndex-finish
There were a lot of conflicts to resolve. Not all of them may have been
resolved correctly...
* master: (1094 commits)
Login accessibility improvements
Translation update (it)
translation update
translation update
translation update
translation update
translation update
translation update
translation update
translation update
translation update
translation update
translation update
translation update
Remove HTML from strings based on title and tagline
SECURITY: fix XSS vulnerability. fixes #4512
translation update
Fix typos in usermanager English strings
Replace hardcoded message by localized string
set DOKU_INC in rector
...
show more ...
|
| #
d4f83172 |
| 31-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
code style: line breaks
|
| #
26dfc232 |
| 31-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
Rector to rename print to echo calls
|
| #
177d6836 |
| 31-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
coding style: control flow whitespaces
|
| #
dccd6b2b |
| 30-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
coding style: function call spacing
|
| #
73022918 |
| 30-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
coding style: PSR12.Classes.ClassInstantiation.MissingParentheses
|
| #
d868eb89 |
| 30-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
codestyle adjustments: function declaration braces/spaces
|
| #
8c7c53b0 |
| 30-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
codestyle adjustments: class declaration braces
|
| #
24870174 |
| 29-Aug-2023 |
Andreas Gohr <andi@splitbrain.org> |
Apply rector fixes to the rest of inc
|
| #
2b9be456 |
| 10-Nov-2022 |
Andreas Gohr <andi@splitbrain.org> |
some more fixes for undefined vars
This makes more use of $INPUT to access $_SERVER and fixes a warning in
one of the search methods.
|
| #
10f66413 |
| 12-May-2022 |
Andreas Gohr <andi@splitbrain.org> |
Merge pull request #3499 from alexdraconian/master
Linkwiz update (#3498)
|
| #
357931f3 |
| 28-Dec-2021 |
Gerrit Uitslag <klapinklapin@gmail.com> |
Merge branch 'master' into revisionHandle3
|
| #
24201594 |
| 17-Dec-2021 |
Andreas Gohr <andi@splitbrain.org> |
fix security problems in draft handling. fixes #3565
|
| #
fd260edf |
| 10-Nov-2021 |
alexdraconian <78018187+alexdraconian@users.noreply.github.com> |
Update Ajax.php
|
| #
2aa917af |
| 07-Nov-2021 |
alexdraconian <78018187+alexdraconian@users.noreply.github.com> |
linkwiz update
|
| #
4668fa19 |
| 14-Aug-2021 |
alexdraconian <78018187+alexdraconian@users.noreply.github.com> |
Update Ajax.php
|
| #
3c4b22e8 |
| 22-May-2021 |
alexdraconian <78018187+alexdraconian@users.noreply.github.com> |
Linkwiz update
Linkwiz Searches title if useheading option is 1 or content
|
| #
edb50e6a |
| 04-Dec-2020 |
Satoshi Sahara <sahara.satoshi@gmail.com> |
Ui\Diff hierarchy
|
| #
9e7aeeba |
| 10-Nov-2020 |
Satoshi Sahara <sahara.satoshi@gmail.com> |
Merge branch 'master' into Refactor_Fulltext
|