Thomas Bruederli
|
4a408843b0
|
Protect download urls against CSRF using unique request tokens (#1490642)
Send X-Frame-Options headers with every HTTP response
|
9 years ago |
Aleksander Machniak
|
d4df3748cf
|
Require Net_Socket >= 1.0.12 (because of timeout=0 bugfix)
|
9 years ago |
Aleksander Machniak
|
ca34ba139e
|
CS fixes
|
9 years ago |
Aleksander Machniak
|
74a7dd553c
|
Fix datepicker so it is possible to re-open the calendar widget by click (Kolab 5115)
|
9 years ago |
Aleksander Machniak
|
940b966fac
|
Update to jQuery 2.2.1
|
9 years ago |
Aleksander Machniak
|
b0a8e36930
|
Fix handling of body parameter in mail compose request
|
9 years ago |
Aleksander Machniak
|
faeeebdc55
|
Hide DSN option in Preferences when smtp_server is not used (#1490666)
|
9 years ago |
Aleksander Machniak
|
9ae41d906e
|
Fix unicode-awareness of Base64 encoding implementation in javascript
|
9 years ago |
Aleksander Machniak
|
8bbb454524
|
Fix list row selection when provided uid is number not a string
|
9 years ago |
Rotzbua
|
7b4f71777e
|
add optional security header to .htaccess
actually most widely used optional header
all options only commented, they should be adusted to your intallation /
user environment
|
9 years ago |
Aleksander Machniak
|
a62ff159f0
|
Performance: Make sure that after contact update we call get_record() only once
|
9 years ago |
Aleksander Machniak
|
d686b57c72
|
Fix bug where contacts widget in compose could be incorrectly initialized with treelist widget (T998)
Fix typo in command name (list-adresses -> list-addresses)
|
9 years ago |
Aleksander Machniak
|
89a49dd370
|
Fix additional_message_headers plugin compatibility with Mail_Mime >= 1.9 (#1490657)
|
9 years ago |
Aleksander Machniak
|
4c0cb96a48
|
Enigma: Fix missing html/plain switch on multipart/signed messages (#1490649)
|
9 years ago |
Aleksander Machniak
|
5d49af37cc
|
Enigma: Disable format=flowed for signed plain text messages (#1490646)
|
9 years ago |
Aleksander Machniak
|
e91c35c534
|
Fix background color on selected and focused addressbook
|
9 years ago |
Aleksander Machniak
|
332ffef199
|
Plugin API: Added addressbook_export hook
|
9 years ago |
Aleksander Machniak
|
8dc756f319
|
Fix bug in long recipients list parsing for cases where recipient name contained @-char (#1490653)
|
9 years ago |
Aleksander Machniak
|
c10eae0884
|
Fix bug where Archive/Junk buttons were not active after page jump with select=all mode (#1490647)
|
9 years ago |
Aleksander Machniak
|
5a30653024
|
Enigma: Don't display "bad password" warning when the password wasn't provided yet
|
9 years ago |
Aleksander Machniak
|
8c626eec8a
|
Cleanup redundant variables
|
9 years ago |
Aleksander Machniak
|
c1a518910a
|
Enigma: Fix bug where signature/decryption info wasn't displayed for some messages
|
9 years ago |
Aleksander Machniak
|
96d7f79a38
|
Set also 'extwin' class on body element in error page
|
9 years ago |
Aleksander Machniak
|
4473dc5588
|
Merge branch 'master' of github.com:roundcube/roundcubemail
|
9 years ago |
Aleksander Machniak
|
53fa08d8ae
|
Enigma: Code refactoring with better handling of encrypted-inside-encrypted (e.g. forwarded) and signed+ncrypted messages
|
9 years ago |
Aleksander Machniak
|
8ef598b883
|
Fix (again) security issue in DBMail driver of password plugin [CVE-2015-2181] (#1490643)
Unify the C program code with the one used by other drivers.
|
9 years ago |
Aleksander Machniak
|
c9e2ab488e
|
Enigma: Fix handling of encrypted + signed messages (#1490632)
|
9 years ago |
Aleksander Machniak
|
c7af660bfc
|
Fix boundary separator in signed messages
|
9 years ago |
Aleksander Machniak
|
0e77b6f1b3
|
Fix regression where xml mode could be used to parse xhtml messages causing empty result
|
9 years ago |
Aleksander Machniak
|
bffca14d96
|
Exit when imagecreatetruecolor() fails
|
9 years ago |
Aleksander Machniak
|
22a018d082
|
Merge branch 'dev-svg'
|
9 years ago |
Aleksander Machniak
|
ed1d212ae2
|
Improved SVG cleanup code
|
9 years ago |
Aleksander Machniak
|
55a02bcf56
|
Add CVE identifier to changelog
|
9 years ago |
Aleksander Machniak
|
bf4a9af567
|
Update ticket ID
|
9 years ago |
Aleksander Machniak
|
023d3eb031
|
Refactor wash_attribs() - fix regressions
|
9 years ago |
Aleksander Machniak
|
558a6db27e
|
Fix headers encoding when using 'valueof' mode
|
9 years ago |
Aleksander Machniak
|
d5f7490b08
|
Fix PHP Fatal error: Can't use function return value in write context
|
9 years ago |
Thomas B
|
66d4ef6e31
|
Merge pull request #316 from namesco/prevent-blank-contactnames
Ensure roundcube doesn't render contact names as blank
|
9 years ago |
Aleksander Machniak
|
e0481f0ccb
|
Save copy of original .htaccess file when using installto.sh script (1490623)
|
9 years ago |
Aleksander Machniak
|
72c250ca67
|
Merge pull request #317 from FrancisRussell/imap-tls
Enable use of TLSv1.1 and TLSv1.2 for IMAP.
|
9 years ago |
Aleksander Machniak
|
9aaeb23d9d
|
Fix HTML entities encoding in message headers output
|
9 years ago |
Aleksander Machniak
|
a1fdb205f8
|
Extend rcube_washtml with SVG support
|
9 years ago |
Francis Russell
|
8f71b164fd
|
Make TLS method for IMAP parameterisable.
|
9 years ago |
Francis Russell
|
191a6a6805
|
Enable use of TLSv1.1 and TLSv1.2 for IMAP.
|
9 years ago |
Aleksander Machniak
|
0bde1c2e4d
|
Fix missing language name in "Add to Dictionary" request in HTML mode (#1490634)
|
9 years ago |
Aleksander Machniak
|
459003303c
|
Fix initial value of horizontal splitter and page elements
|
9 years ago |
James Buncle
|
fd0244dabf
|
Ensure roundcube doesn't render contact names as blank (when the name is whitespace)
|
9 years ago |
Aleksander Machniak
|
4e1aa60c16
|
Make possible to disable authentication via rcube_smtp::connect() arguments (#1490621)
|
9 years ago |
Aleksander Machniak
|
40d7342dd9
|
Fix XSS issue in SVG images handling (#1490625)
|
9 years ago |
Aleksander Machniak
|
f04b56f306
|
Enigma: Enable default signing/encryption on a signed/encrypted draft compose
|
9 years ago |