mattpass
4ac0f0b43a
Changing REQUEST to POST and GET
2022-06-25 20:46:17 +01:00
mattpass
733c6d92fc
3 more files in lib tidied
2020-05-08 09:38:09 +01:00
mattpass
b97c332f83
Set iceURLPath, use that and remove top.
2020-02-28 17:08:07 +00:00
Rafael Rotelok
51ab472142
PSR-2 Compliance, removing the closing tag ( ?> ) on php only files
...
inserting a blank line on the end of php only files
2018-06-16 00:19:49 -03:00
Matt Pass
3b84af75d2
Only use if we have text available and no caching
...
Caching may be causing files not to show in file manager occassionally
and dreaded ERR_CACHE_MISS notification being shown in Chrome currently
2014-11-26 09:34:41 +00:00
Matt Pass
cc5cd166be
Only if no headers sent, set the 3 headers
2014-09-26 11:59:03 +01:00
Matt Pass
9ba08fbf48
Stop if running old version
...
Shouldn't do this and could be a security vuln.
2014-09-17 08:54:27 +01:00
Matt Pass
21ab41e677
Placeholder vars added for more lang pieces
2014-08-10 21:07:42 +01:00
Matt Pass
47af30e0b6
Include common settings and xssClean output
...
inlcude_once the settings-common.php file so we have the xssClean
function
Set $req to the xssClean'd value or blank
Also xssClean other strings that are output
2014-05-20 07:25:15 +01:00
Matt Pass
8133adeab8
!isset($_REQUEST["csrf"]) is extra fail cond
2014-05-03 14:19:24 +01:00
Matt Pass
1a85a1ddc3
Display a more helpful & useful error message
2014-05-03 14:09:09 +01:00
Matt Pass
1306853e1e
Cannot use $_REQUEST, should be $_GET || $_POST
...
$_REQUEST appears to contain other system info, need to check on the
existence of $_GET or $_POST data
2014-04-23 07:23:02 +01:00
Matt Pass
328a8a9808
Adjustment to value, should just be nosniff
2014-04-21 08:15:34 +01:00
Matt Pass
0daf6c3081
Redo security headers
2014-04-21 07:57:41 +01:00
Matt Pass
1d5c74e424
Add CSRF and clickjacking protection
...
This header file included in all PHP files as first item.
CSRF checks happen on GET or POST instances
Security related headers also added to prevent clickjacking
2014-04-18 18:21:17 +01:00
