Fredrick Brennan
505adffcdc
Cyclical threads ♺
9 years ago
czaks
ab02a42725
maybe we can try to load Parsedown, after all we can silence the error
8 years ago
8chan
d788131202
Allow a board called news to exist
10 years ago
czaks
d726eaf195
we don't have a htmlpurifier yet ;_;
8 years ago
Fredrick Brennan
95b1e103cb
Edit static pages commit
9 years ago
8chan
7911c374e8
Public action logs commit (log.php)
Note: In a previous commit, I began making inc/mod/auth.php more modular with the check_login() function. Including it does NOT check mod login by default anymore like it does on vichan. You have to call check_login(). I've finally included it in inc/functions.php. If you have any custom pages that use inc/mod/auth.php, just including functions.php is enough now.
===================================
Also: backports 351375185e5 (early 404)
9 years ago
8chan
6dd1420f91
Add event to quote backlinks
9 years ago
8chan
ce3ce4f1b6
Fix *0 secure tripcodes caused by accidentally feeding + signs to crypt()
9 years ago
8chan
7831da83fc
New event: rebuildpost, allows you to bind events to ?/edit
9 years ago
Fredrick Brennan
b476b66007
[BUG] Image reject repost board option now also affects YT embeds
9 years ago
czaks
126ee42b9d
better rules for stripping combined chars, based on 45c0d327619 by @ctrlcctrlv
8 years ago
czaks
33ef3f9b01
synchronize catalog_link
8 years ago
8chan
7a7574bdca
SECURITY / XSS : ?/edit allowed arbitrary HTML to be added by any user thru addition of <tinyboard raw html>1</tinyboard>
This allowed ANY user with ?/edit privilege to also have raw_html regardless of whether they had $config['mod']['rawhtml']
Now, any changes to <tinyboard> markup modifiers via ?/edit are not allowed. They are removed at read time, and before write they are removed again and the ones in the database (which should be clean...) are inserted instead.
Please immediately apply this patch to your instance if you are running any version of 8chan/infinity.
10 years ago
8chan
6da7f4d25a
No more country flags in <title>
9 years ago
8chan
632d0a76d0
Display placeholder if no file in catalog/theme.php; czaks: fix the code a bit
10 years ago
8chan
6b04b3c671
Fix post deletion
9 years ago
Fredrick Brennan
8943bb0bb3
Rewrite report system due to flooding
9 years ago
czaks
cd01191072
those parts are extraneous
8 years ago
8chan
3eb755ee7e
Move login check in inc/mod/auth.php to a function
This allows pages like create.php to not include inc/mod/pages.php while still being able to use the mod auth functions (like generating salts and passwords)
10 years ago
8chan Admin
93f748e6a8
Security: capitalization of mods username is significant
10 years ago
czaks
abe4bdd6ae
fixup
8 years ago
czaks
77176faece
enable javascript in mod panel
8 years ago
czaks
a42256b296
locale cache: fix a bug when perms are done wrong
8 years ago
czaks
36b78e5f98
fix for editor highlighting
8 years ago
czaks
dcf5d699bd
simplify the md5 execution logic
8 years ago
czaks
9768161327
simplify the code a bit
8 years ago
czaks
7c3126866c
ease the migration process for the previous security patch (by introducing another migration); restore php 5.4 compatibility (introducing a polyfill system)
8 years ago
czaks
caaf741691
[SECURITY] keep up with modern password hashing standards
8 years ago
Michael Walker
9f00630b40
Display banned post contents if reason does not contain cp
8 years ago
Matthieu
d2de4419bd
Added: config option to hide email in post. (prevent emailfag but let the possibility to sage and noko)
9 years ago
Michael Walker
d46428b5b7
Trim leading newlines and trailing whitespace from code blocks.
9 years ago
Michael Walker
692ca79d8b
Don't include post messages in public banlist
9 years ago
czaks
6d4e756240
fix a bug for some bad database state. thanks Seisatsu for testing
9 years ago
czaks
706feeddff
fix cache_config: webms were thumbnailed twice and with the latest addition, they couldn`t resize at all
9 years ago
czaks
1136cc0e44
reflect in readme, that we support .mp4 files as well now
9 years ago
czaks
ccd00c497c
a stricter check for webm processing
9 years ago
27chan
219c1987a9
Add extension mp4
9 years ago
27chan
f1cbbbc15a
Add extension mp4
9 years ago
27chan
601c8cebc9
Add extension mp4
9 years ago
czaks
d3d167affb
SECURITY: XSS fix for youtube.js/metacafe embed
9 years ago
Matěj Grabovský
b25b443e55
Fix a few fatal errors
9 years ago
Matěj Grabovský
1f409a6f4d
Fix a few fatal errors
9 years ago
Anonke
3f29bdfac9
the poster IDs were showing in API despite being disabled
9 years ago
Michael Walker
61d9dacdfb
When banning/deleting a post, return to the thread, not the board index (unless deleting the OP)
9 years ago
Michael Walker
649255c9b9
When deleting a post, return to the thread, not the board index (unless deleting the OP)
9 years ago
Michael Walker
4184fdec6e
Pass the thread ID when banning/deleting
9 years ago
czaks
2d9214ac63
version check should point at engine.vichan.net and not tinyboard.org actually
9 years ago
czaks
4c1d2f924c
fix error while installing themes; thanks xixi
9 years ago
Marcin Łabanowski
4014682882
fileboard support
9 years ago
czaks
1b16e97f67
[code] fix regexps
9 years ago