mtschirs
✭✭✭mtschirs ✭✭✭
Reactions
-
Improve Vanilla Security by Default - Deny Viewing the Cache
I would suggest to make vulnerability discovery in Vanilla harder by removing web access to the cache directory (or relevant parts of it). E.g. http://vanillaforums.org/cache/p_core_library_map.ini I… (View Post)4 -
Re: Possible to have front and admin page in different lanage?
Get the multilingual plugin from here http://vanillaforums.org/addon/multilingual-plugin * Note: There are some strange quirks with this plugin as well as a multi-language support in Vanilla in gener… (View Post)4 -
Let's finally remove magic quotes from Vanilla!
Browsing through the core library, I found some crude ways of dealing with PHP's magic quotes. E.g. Gdn_Form uses stripcslashes instead of stripslashes to deal with magic quotes in form values. Also,… (View Post)6 -
Re: Issue: Unicode emoji mangled by Vanilla JS
Fixed with https://github.com/vanilla/vanilla/pull/2949 @x00: I post issues here to get feedback - might be the issue has already been discussed and I am not aware of it - and then send a pull reques… (View Post)6 -
Re: Auto-Drafts VS. Usability
Just fixed this via https://github.com/vanilla/vanilla/pull/2948 The issue was not the auto-draft feature (as I thought), but a misguided "Cache-Control: no-store" header. See the linked pu… (View Post)3