Commit Graph

1921 Commits (40d7342dd9c9bd2a1d613edc848ed95a4d71aa18)

Author SHA1 Message Date
Aleksander Machniak 40d7342dd9 Fix XSS issue in SVG images handling (#1490625) 9 years ago
Aleksander Machniak d72e5afb47 Fix PHP7 warning "session_start(): Session callback expects true/false return value" (#1490624) 9 years ago
Thomas Bruederli 12d389b396 Fix mail view scaling on iOS (#1490551) 9 years ago
Aleksander Machniak 1c2aad89ab Fix .htaccess rewrite rules to not block .well-known URIs (#1490615) 9 years ago
Aleksander Machniak d08dc5bfc5 Fix so drag-n-drop of text (e.g. recipient addresses) on compose page actually works (#1490619) 9 years ago
Aleksander Machniak 10e5192a2b Fix path traversal vulnerability in setting a skin (#1490620) 9 years ago
Aleksander Machniak cd219a45dd Fix regression where some message attachments could be missing on edit/forward (#1490608) 9 years ago
Aleksander Machniak c3be175ce7 Fix PDF support detection in Firefox > 19 (#1490610) 9 years ago
Aleksander Machniak be346095a0 Fix handling of message/rfc822 attachments on replies and forwards (#1490607) 9 years ago
Aleksander Machniak 6463b662ca Fix regression in displaying contents of message/rfc822 parts (#1490606) 9 years ago
Aleksander Machniak faacb9d30b Update changelog 9 years ago
Aleksander Machniak 40212452af Add some CVE identifiers 9 years ago
Aleksander Machniak 1912d8c62b Fix invalid LDAP query in ACL user autocompletion (#1490591) 9 years ago
Aleksander Machniak a15d877ba8 Added brute-force attack prevention via login rate limit (#1490566) 9 years ago
Aleksander Machniak 9234903287 Fix HTML sanitizer to skip <!-- node type X --> in output (#1490583) 9 years ago
Aleksander Machniak 038543ea4d Update changelog 9 years ago
Aleksander Machniak bcd3799954 Fix redundant blank lines when using HTML and top posting (#1490576) 9 years ago
Aleksander Machniak eb721e35b2 Update to TinyMCE 4.2 9 years ago
Aleksander Machniak a5c03db798 Security: Added options to validate username/password on logon (#1490500) 9 years ago
Aleksander Machniak fddfd8e6d7 Remove backward compatibility "layer" of bc.php (#1490534) 9 years ago
Aleksander Machniak 92bcb940d4 Fix bug where HTML messages with invalid/excessive css styles couldn't be displayed (#1490539)
Technically speaking we remove the whole CSS content when it has more than 5k lines.
9 years ago
Aleksander Machniak f1e7bbd1bd Fix bug where message preview was unintentionally reset on check-recent action (#1490563) 9 years ago
Aleksander Machniak c8c4cafb1f Add possibility to define date format in write operations for ldap attributes (#1488741) 9 years ago
Aleksander Machniak bb1ed2740d Display attachment size in compose (#1484774) 9 years ago
Aleksander Machniak d560916065 Added possibility to drag-n-drop attachments from mail preview to compose window 9 years ago
Aleksander Machniak 5802e08e48 Mail messages searching with predefined date interval (T103) 9 years ago
Aleksander Machniak 2a6cf5bb0e Fix responses list update issue after response name change (#1490555) 9 years ago
Aleksander Machniak e9ca5e0655 Fix so database_attachments::cleanup() does not remove attachments from other sessions (#1490542) 9 years ago
Aleksander Machniak 2940109391 Update changelog 9 years ago
Aleksander Machniak 07850aacbf Move some more entries under release 1.1.3 mark 9 years ago
Thomas Bruederli b7f4b99edd Update changelog 9 years ago
Aleksander Machniak 77be69fa25 Fix issue where Content-Length of some attachments could be set to wrong value causing browser errors (#1490482) 9 years ago
Aleksander Machniak c49234bd78 Fix bug where clicking date column with 'arrival' sorting would switch to sorting by 'date' (#1490126) 9 years ago
Aleksander Machniak dd7db21797 Fix XSS issue in drag-n-drop file uploads (#1490530) 9 years ago
Aleksander Machniak d3823fe0a0 Use Net_SMTP-1.7.x and Net_Sieve-1.5.x (Roundcube fork), update changelog (#1490416) 9 years ago
Aleksander Machniak 26086981a2 Improve randomness of security tokens (#1490529) 9 years ago
Aleksander Machniak f75bc5c24b Use random security tokens instead of hashes based on encryption key (#1490404) 9 years ago
Aleksander Machniak e4c66080a8 Improved encrypt/decrypt methods with option to choose the cipher_method (#1489719) 9 years ago
Aleksander Machniak fdbb1c95ea Fix missing HTTP_X_FORWARDED_FOR address in generated Received header 9 years ago
Aleksander Machniak 91018f38d4 Fix so In-Reply-To header is set also for MDN receipts (#1490523) 9 years ago
Aleksander Machniak 3c29c7e858 Fix various issues with Turkish (and similar) locales (#1490519) 9 years ago
Aleksander Machniak 399a2d68b6 Make optional adding of standard signature separator - sig_separator (#1487768) 9 years ago
Aleksander Machniak 427ab2f393 Optimize folder_size() on Cyrus IMAP by using special folder annotation (#1490514) 9 years ago
Aleksander Machniak 4d36da83b2 Fix support for Mozilla-based browsers, e.g. Pale Moon (#1490517) 9 years ago
Aleksander Machniak 67fac374a3 Fix so gc.sh script removes also expired sessions from sql database (#1490512) 9 years ago
Aleksander Machniak 4ceff8f353 Make optional hidding of folders with name starting with a dot - imap_skip_hidden_folders (#1490468) 9 years ago
Aleksander Machniak 6ca1e6add1 Add option to enable HTML editor always, except when replying to plain text messages (#1489365) 9 years ago
Aleksander Machniak a63f14ec40 Emoticons-related code refactoring
- Emoticons: All emoticons-related functionality is handled by the plugin now
- Emoticons: Added option to switch on/off emoticons in compose editor (#1485732)
- Emoticons: Added option to switch on/off emoticons in plain text messages
- Plugin API: Added disabled_plugins an disabled_buttons options in html_editor hook
- Plugin API: Added html2text hook
9 years ago
Aleksander Machniak 3516b02344 Fix so adding CC/BCC recipients from the sidebar unhides compose form fields in Classic skin (#1490472) 9 years ago
Aleksander Machniak 8297ea1dcf Fix handling of plus character in mailto: links (#1490510) 9 years ago