Serge Latyntcev
b269d87490
BUG Register new sub tasks to fix files affected by CVE-2020-9280 and CVE-2019-12245
2020-04-13 17:16:57 +12:00
Maxime Rainville
4b0345bee7
DOC Explain how to use the new file migation sub tasks in the 4.4.6/4.5.2 changelogs
2020-04-13 17:16:29 +12:00
Loz Calver
39fab1974a
Merge pull request #9435 from unclecheese/pulls/4.5/wha-diff
...
BUGFIX: Ensure diff arrays are one-dimensional
2020-04-01 09:16:20 +01:00
Robbie Averill
5002f514b3
FIX Capitalisation fixes in welcome back message ( #9439 )
2020-03-23 15:54:30 +13:00
Aaron Carlino
37e8720fe5
Linting
2020-03-17 16:21:46 +13:00
Aaron Carlino
7ad5f1bb14
BUGFIX: Ensure diff arrays are one-dimensional
2020-03-17 15:57:28 +13:00
Garion Herman
88660e6435
Merge pull request #9426 from creative-commoners/pulls/4.5/change-atomic-job-title
...
DOC Update atomic MigrationTask description
2020-03-16 15:19:33 +13:00
Steve Boyd
687435a2f1
Merge branch '4.4' into 4.5
2020-03-06 10:52:22 +13:00
Steve Boyd
2e875a04ae
Merge pull request #9381 from webbuilders-group/bugfix-timefield-readonly
...
BUGFIX: Fixed issue where TimeField_Readonly would only show "(not set)"
2020-03-06 10:38:57 +13:00
Steve Boyd
6d6cc65927
Update description
2020-03-06 09:57:31 +13:00
UndefinedOffset
bba0f2f72f
BUGFIX: Fixed issue where TimeField_Readonly would only show "(not set)" instead of the value
2020-02-24 09:59:00 -04:00
Robbie Averill
2936f6e0d2
Merge pull request #9412 from creative-commoners/pulls/4.5/php-7.4-stable-build
...
Update Travis config to use stable PHP 7.4 release
2020-02-20 16:22:48 +13:00
Garion Herman
a65e65409f
Upgrade Travis config to Xenial
2020-02-20 16:07:14 +13:00
Garion Herman
d5149a8e38
Update Travis config to use stable PHP 7.4 release
2020-02-20 14:01:22 +13:00
Serge Latyntcev
6c2f179a43
Merge branch '4.4' into 4.5
2020-02-19 10:20:50 +13:00
Serge Latyntsev
91f091f418
Merge pull request #9410 from blueo/patch-1
...
Update CVE number to CVE-2019-19325
2020-02-19 10:15:52 +13:00
Bernard Hamlin
765810b013
Update CVE number to CVE-2019-19325
2020-02-19 09:58:12 +13:00
Maxime Rainville
5fd16cd7e1
Add 4.5.1 changelog
2020-02-17 17:47:23 +13:00
Maxime Rainville
d95e911f1d
Update translations
2020-02-17 02:29:18 +00:00
Maxime Rainville
7ce2abf74d
Merge remote-tracking branch 'origin/4.4' into 4.5
2020-02-17 14:43:38 +13:00
Maxime Rainville
a9598eec3f
Added 4.4.5 changelog
2020-02-17 14:02:57 +13:00
Maxime Rainville
0a9866c087
Update translations
2020-02-17 14:01:02 +13:00
Maxime Rainville
acd7d94167
Merge branch '4.4' into 4.5
2020-02-17 13:07:26 +13:00
Maxime Rainville
49fda52b12
Merge pull request #94 from silverstripe-security/fix/cve-2019-19325
...
CVE-2019-1935
2020-02-17 12:54:40 +13:00
Serge Latyntcev
ad1b00ec7d
[CVE-2019-19325] XSS through non-scalar FormField attributes
...
Silverstripe Forms allow malicious HTML or JavaScript to be inserted
through non-scalar FormField attributes, which allows performing XSS (Cross-Site Scripting)
on some forms built with user input (Request data). This can lead to phishing attempts
to obtain a user's credentials or other sensitive user input.
There is no known attack vector for extracting user-session information or credentials automatically,
it required a user to fall for the phishing attempt.
XSS can also be used to modify the presentation of content in malicious ways.
2020-02-17 09:58:29 +13:00
Steve Boyd
9d5c3ef20e
Merge branch '4.4' into 4.5
2020-02-11 16:45:15 +13:00
Steve Boyd
8dcaed25f4
Merge pull request #9386 from silverstripe-terraformers/feature/orm-column
...
ORM bugfix and enhancement
2020-02-11 15:56:03 +13:00
Mojmir Fendek
285e6caafa
PR fixes
2020-02-11 10:43:01 +13:00
Mojmir Fendek
448147c2f1
PR fixes
2020-02-10 09:17:34 +13:00
Mojmir Fendek
660f80d284
PR fixes
2020-02-07 13:49:19 +13:00
Robbie Averill
fe496a29ec
Merge pull request #9397 from mikenuguid/bugfix/update-orm-scaffoldformfield
...
FIX Update ORM DBField types to use Injector in scaffoldFormField()
2020-02-04 22:38:34 +13:00
mnuguid
ca36a47bb1
FIX Update ORM DBField types to use Injector in scaffoldFormField()
...
- This is usable in cases where a DBField is needed to be overloaded through the Injector.
2020-02-04 21:43:47 +13:00
Bryn Whyman
27517c55e7
Merge pull request #9396 from muskie9/patch-11
...
DOCS correct changelog link in README
2020-02-03 15:48:52 +13:00
Nic
dd537f0cc9
DOCS correct changelog link in README
2020-02-02 20:20:38 -06:00
Mojmir Fendek
99786dda22
ORM Column now supports related table lookup
2020-01-28 15:46:30 +13:00
Mojmir Fendek
9c38c5f625
CMS action related extension points ( #9340 )
...
* CMS action related extension points
* Refactor to use fewer extension points
* Remove explicit return type
Co-authored-by: Aaron Carlino <unclecheese@leftandmain.com>
2020-01-27 15:09:15 +13:00
Robbie Averill
53fcd47dfc
Merge branch '4.4' into 4.5
2020-01-16 19:59:42 -08:00
Robbie Averill
26e3b6f4e3
Merge branch '4.3' into 4.4
2020-01-16 19:59:24 -08:00
Robbie Averill
7c1a0571f7
Merge pull request #9367 from martinduparc/patch-2
...
array_key_exists() on objects is deprecated in PHP 7.4
2020-01-14 09:39:49 -08:00
Robbie Averill
38d7bd700d
Merge pull request #9373 from manja/4.5
...
Fixed issue with merging existing entities in text collector
2020-01-14 09:27:35 -08:00
Robbie Averill
bdc723ff69
Merge pull request #9361 from kinglozzer/configure-database-glob
...
Minor performance improvement in DatabaseAdapterRegistry::autoconfigure()
2020-01-14 09:25:07 -08:00
Martin D
ec6a353543
array_key_exists() on objects is deprecated
...
Ref: https://wiki.php.net/rfc/deprecations_php_7_4#array_key_exists_with_objects
2020-01-14 09:22:49 -08:00
Nemanja Karadzic
18f0829053
Fixed issue with merging existing entities in text collector
2020-01-14 14:20:40 +01:00
Loz Calver
a42249b6fc
Minor performance improvement in DatabaseAdapterRegistry::autoconfigure()
2019-12-19 14:39:46 +00:00
Serge Latyntcev
08eaed4190
Added 4.5.0 changelog
2019-12-19 11:24:04 +13:00
Serge Latyntcev
e1a1459df3
Added 4.5.0-rc2 changelog
2019-12-19 11:23:31 +13:00
Andre Kiste
6650d81324
BUG Fix extra blank Group being created when creating a new Group ( #9325 )
...
* Fix extra blank Group being created when creating a new Group
* Update tests to reflect expected behavior
* Improved tests
2019-11-27 09:32:33 +13:00
Stevie Mayhew
92acc764f7
Merge pull request #9327 from kinglozzer/9259-session-restart
...
FIX: Session::restart() didn't correctly restart session (fixes #9259 )
2019-11-21 11:52:36 +13:00
Loz Calver
453945da14
FIX: Session::restart() didn't correctly restart session ( fixes #9259 )
2019-11-20 14:21:30 +00:00
Serge Latyntcev
91e4aa90f1
Merge branch '4.4' into 4.5
2019-11-20 11:09:23 +13:00