silverstripe-framework/model
Ingo Schommer 74f65540a2 Validate 'archiveDate' user data in Versioned
Not a security issue as such, since the user input is sanitized
before being used in Versioned->augmentSQL(). But it shouldn't
reach the session state either, since that's commonly assumed
to be sanitized data, and it leaves unnecessary room for error.

strtotime() has fairly loose validation rules around dates,
but its a good "first line of defence".
2013-08-15 22:17:38 +02:00
..
fieldtypes NEW: Added DataObject::getQueriedDatabaseFields() as faster alternative to toMap() 2013-04-21 13:39:11 +12:00
Aggregate.php FIX Remove instances of lines longer than 120c 2012-09-30 17:18:13 +13:00
ArrayList.php NEW: Allow hashes to be passed as ArrayList items; the will be turned into ArrayData objects. 2013-01-29 18:03:49 +01:00
ComponentSet.php FIX Remove instances of lines longer than 120c 2012-09-30 17:18:13 +13:00
Database.php Merge remote-tracking branch 'origin/2.4' into 3.0 2013-05-17 00:37:30 +02:00
DatabaseAdmin.php Add codesniffer that ensures indentation is with tabs. 2012-12-12 00:12:11 +13:00
DataDifferencer.php Method visibility according to coding conventions 2012-09-20 10:46:59 +02:00
DataExtension.php Removed explicit pass-by-ref in DataExtension->validate() 2013-02-06 19:00:23 +01:00
DataList.php API Data corruption on Versioned due to lazy loading 2013-02-14 14:28:42 +01:00
DataModel.php Method visibility according to coding conventions 2012-09-20 10:46:59 +02:00
DataObject.php NEW: Added DataObject::getQueriedDatabaseFields() as faster alternative to toMap() 2013-04-21 13:39:11 +12:00
DataObjectDecorator.php FIX Remove instances of lines longer than 120c 2012-09-30 17:18:13 +13:00
DataObjectInterface.php FIX Remove instances of lines longer than 120c 2012-09-30 17:18:13 +13:00
DataObjectSet.php FIX Remove instances of lines longer than 120c 2012-09-30 17:18:13 +13:00
DataQuery.php API Data corruption on Versioned due to lazy loading 2013-02-14 14:28:42 +01:00
DB.php Fixed whitespace usage 2013-02-18 15:43:52 +01:00
Filterable.php FIX Remove instances of lines longer than 120c 2012-09-30 17:18:13 +13:00
GroupedList.php Fixed usage of DataList etc in docs (fixes #7518) 2012-06-27 16:09:31 +02:00
HasManyList.php Add codesniffer that ensures indentation is with tabs. 2012-12-12 00:12:11 +13:00
HiddenClass.php MINOR Update @package values to match renaming sapphire 2012-04-15 10:50:19 +12:00
Hierarchy.php FIX Respect tree node limits, fix search result node display 2013-03-19 00:05:14 +01:00
HTMLValue.php BUG Fixing "+" characters being replaced with whitespace 2012-10-24 14:44:14 +13:00
Image.php FIX Remove instances of lines longer than 120c 2012-09-30 17:18:13 +13:00
Limitable.php Update docs to indicate lists not mutable as per 7673 2012-07-20 14:51:12 +12:00
List.php FEATURE: implement SS_Sortable->reverse() 2012-04-27 15:54:14 +12:00
ListDecorator.php FEATURE: implement SS_Sortable->reverse() 2012-04-27 15:54:14 +12:00
ManyManyList.php Consistently exposed ManyManyList information through getters. 2013-01-31 15:21:46 +01:00
Map.php return $this, for do things like this: new DropdownField('XPTOName', 'XPTO Label', XPTOModel::get()->map("ID", "Name")->unshift(0,'- Select -')) 2012-11-30 01:37:36 +00:00
MySQLDatabase.php Add codesniffer that ensures indentation is with tabs. 2012-12-12 00:12:11 +13:00
RelationList.php Method visibility according to coding conventions 2012-09-20 10:46:59 +02:00
Sortable.php Update docs to indicate lists not mutable as per 7673 2012-07-20 14:51:12 +12:00
SQLMap.php Scoped deprecation messages (fixes #7645) 2012-07-13 11:37:35 +02:00
SQLQuery.php Adding test for SortColumn to SQLQueryTest 2012-12-20 15:52:46 +13:00
Transliterator.php Add codesniffer that ensures indentation is with tabs. 2012-12-12 00:12:11 +13:00
URLSegmentFilter.php BUG SS has problems handling + in URLs. Filter them out. 2012-12-18 09:44:47 +01:00
ValidationException.php BUGFIX Make sure a message is set on ValidationException objects. 2012-12-05 12:18:36 +10:00
ValidationResult.php FIX Remove instances of lines longer than 120c 2012-09-30 17:18:13 +13:00
Versioned.php Validate 'archiveDate' user data in Versioned 2013-08-15 22:17:38 +02:00