RoundcubeMail

Commit Graph

Author	SHA1	Message	Date
Aleksander Machniak	bf599fe1cf	Fix cross-site scripting (XSS) vulnerability in setting Content-Type/Content-Disposition for attachment preview/download Thanks to rehme.infosec for reporting the issues.	2 years ago
Aleksander Machniak	24df766e28	Bring back 1.4-git as a version number	2 years ago
Aleksander Machniak	1e3e457466	Fix PHP 5.4 compatibility by using pear-core-minimal 1.10.11 (#9148 )	2 years ago
Aleksander Machniak	7b2df52ede	Fix cross-site scripting (XSS) vulnerability in handling of SVG in HTML messages (#9168 )	2 years ago
Thomas Bruederli	69be0b7b81	Bump version to 1.4.14	2 years ago
Aleksander Machniak	c998034d31	Fix cross-site scripting (XSS) vulnerability in handling of linkrefs in plain text messages Thanks to Niraj Shivtarkar for the report.	2 years ago
Aleksander Machniak	e278cce6b8	Update changelog	3 years ago
Thomas Bruederli	784eb80e67	Bump version to 1.4.13	4 years ago
Aleksander Machniak	b2400a4b59	Security: Fix cross-site scripting (XSS) via HTML messages with malicious CSS content	4 years ago
Thomas Bruederli	786fb18c43	Revert disabling the spell check feature in defaults This is not a change that should be done in a patch release.	4 years ago
Thomas Bruederli	ff61573803	Bump version to 1.4.12	4 years ago
Aleksander Machniak	4e1358b4dc	Add input validation for list column/order	4 years ago
Aleksander Machniak	faf99bf8a2	Fix XSS issue in handling attachment filename extension in mimetype mismatch warning (#8193 )	4 years ago
Thomas Bruederli	c59a5ca845	Updated changelog	4 years ago
Aleksander Machniak	28314d9e0b	Update changelog [skip ci]	4 years ago
Aleksander Machniak	6adae8f9f5	Typo [skip ci]	4 years ago
Aleksander Machniak	4bcb40e395	Fix shift + drag'n'drop menu not working Elastic skin with Chrome browser (#8107 )	4 years ago
Aleksander Machniak	600a1e29ff	Fix handling of custom From addresses with names (#8106 )	4 years ago
Aleksander Machniak	b44acbecbf	Fix displaying HTML body with inline images encapsulated using TNEF format (winmail.dat)	4 years ago
Aleksander Machniak	2140865686	Fix bug where plus characters in attachment filename could have been ignored (#8074 )	4 years ago
Aleksander Machniak	ea7d207924	Fix bug where consecutive LDAP searches could return wrong results (#8064 )	4 years ago
Aleksander Machniak	18b980cfb1	Fix bug where contacts search didn't work with addressbook_search_mods set to an empty array (#7974 )	4 years ago
Aleksander Machniak	cbb8cfcb29	Enigma: Fix bug where signature verification could fail for non-ascii bodies (#7919 )	4 years ago
Aleksander Machniak	e1af03c8a4	Fix bug causing some HTML message content to be not centered in Elastic skin (#7911 )	4 years ago
Thomas Bruederli	34c42f06e1	Bump version to 1.4.11	5 years ago
Aleksander Machniak	9dc276d5f2	Fix cross-site scripting (XSS) via HTML messages with malicious CSS content Thanks to Mateusz Szymaniec (CERT Polska) for reporting the issue.	5 years ago
Aleksander Machniak	1657ff4729	Update changelog [skip ci]	5 years ago
Aleksander Machniak	d16f3a8f1f	Update changelog [skip ci]	5 years ago
Aleksander Machniak	ee7c568a00	Update changelog [skip ci]	5 years ago
Aleksander Machniak	83d9ad3f64	Display a nice error informing about no PHP8 support	5 years ago
Thomas Bruederli	4efec49a46	Bump version to 1.4.10	5 years ago
Aleksander Machniak	0bceba301a	Fix cross-site scripting (XSS) via HTML or Plain text messages with malicious content [CVE-2020-35730] Credits to Alex Birnberg <birnbergalex@gmail.com>	5 years ago
Aleksander Machniak	0efb565a9e	Fix state of subscription toggle on folders list after changing folder state from the search result (#7653 )	5 years ago
Aleksander Machniak	722b278f04	Update changelog [skip ci]	5 years ago
Aleksander Machniak	26b4dc3cf7	Fix extra angle brackets in In-Reply-To header derived from mailto: params (#7655 )	5 years ago
Thomas Bruederli	22bdb65bbf	Bump version to 1.4.9	5 years ago
Aleksander Machniak	580f7caf51	Fix so autocompletion list does not hide on scroll inside it (#7592 )	5 years ago
Aleksander Machniak	7d9571354d	Fix scroll jump on key press in plain text mode of the HTML editor (#7622 )	5 years ago
Aleksander Machniak	d2bd6b72c1	Fix empty output from HTML5 parser when content contains XML tag (#7624 )	5 years ago
Aleksander Machniak	915c867f35	Fix incorrect PDO::lastInsertId() use in sqlsrv driver (#7564 )	5 years ago
Aleksander Machniak	04872a84cc	Fix empty space on mail printouts in Chrome (#7604 )	5 years ago
Aleksander Machniak	bf2f063d03	Fix HTML editor in latest Chrome 85.0.4183.102, update to TinyMCE 4.9.11 (#7615 )	5 years ago
Aleksander Machniak	7126c25d80	Fix bug where some parts of a message could have been missing in a reply/forward body (#7568 )	5 years ago
Aleksander Machniak	e00cd99d65	Update changelog	5 years ago
Aleksander Machniak	8da9d7054f	Update changelog [skip ci]	5 years ago
Aleksander Machniak	6aa72107a2	Fix jstz.min.js installation, bump version to 1.0.7	5 years ago
Aleksander Machniak	9ae194e844	Fix restoring Cc/Bcc fields from local storage (#7554 )	5 years ago
Aleksander Machniak	0839cdd241	Fix importing birthday dates from Gmail vCards (BDAY:YYYYMMDD)	5 years ago
Thomas Bruederli	ce22759434	Bump version to 1.4.8	5 years ago
Aleksander Machniak	a71bf2e8d4	Fix cross-site scripting (XSS) via HTML messages with malicious svg or math content	5 years ago

1 2 3 4 5 ...

2695 Commits (1.4.16)