only allow configured URL schemes in external links

This fixes a problem where JavaScript could be introduced through
specially crafted RSS feeds on a lower level than the commit from
yesterday (1ca

only allow configured URL schemes in external links

This fixes a problem where JavaScript could be introduced through
specially crafted RSS feeds on a lower level than the commit from
yesterday (1ca2719c7488662ebd7964c0d026e0890f923ee9)

This also fixes a problem where JavaScript links could be introduced by
specifying it as an RSS URL: the resulting error message displays a
link to the broken feed URL. This patch makes sure there's no working
link for unknown protocols.

show more ...

Fix lowercasing of words in the indexer FS#2270

On certain PHP installations (it has been reproduced with PHP version
5.2.0-8+etch11) the indexer failed to lowercase words in the indexer
so the full

Fix lowercasing of words in the indexer FS#2270

On certain PHP installations (it has been reproduced with PHP version
5.2.0-8+etch11) the indexer failed to lowercase words in the indexer
so the fulltext search was partially broken.

show more ...

media history

media manager

Only allow known protocols in RSS links

This fixes a security vulnerability where an attacker could introduce
JavaScript links into wiki pages by including a prepared RSS feed.

deprecated even functions

These now simply wrap around jQuery

Moved behavioural functions into it's own object and file

JavaScript functions adding behaviours based on IDs or class names where
moved to their own object into behaviour.js and where jQueryized.

recent changes fix

Use mailprefix for media upload emails too (see also FS#2021)

fullscreen media manager

finished jQuery port of ACL manager

marked sack library as deprecated

started jQuery port of ACL manager

Add missing return value to p_set_metadata

Use autoloading for plugin classes

fixed email subject encoding bug ($enc_subj typo)

type of recent changes selection fix

type of recent changes selection

media version saving fixes

fixed JavaScript compressor for certain regexes

This fixes a problem with running the minified jQuery through the
compressor.

fixed typo

Updated jQuery-UI, added jQuery updater, load theme in CSS dispatcher

This patch adds a simple shell script to easily update the
jQuery/jQuery-UI+theme bundle to the latest available version.

The j

Updated jQuery-UI, added jQuery updater, load theme in CSS dispatcher

This patch adds a simple shell script to easily update the
jQuery/jQuery-UI+theme bundle to the latest available version.

The jQuery-UI CSS theme is now loaded in lib/exe/css.php (before plugin
and template styles - 3rd party authors can override the styles).

show more ...

Add a newline when loading JavaScript files

This avoids problems when the files are concatenated later.

Updated JQuery to version 1.6.1

Estonian language update