Mirrors/roundcubemail
2
0
Fork 0
mirror of https://github.com/roundcube/roundcubemail.git synced 2026-03-11 18:46:51 +01:00
Code Issues Packages Projects Releases Wiki Activity
11,798 Commits 72 Branches 205 Tags
cd2ec14b36dbe5bcfae12cf9fea338f78bccfc1d
Commit Graph

1263 Commits

Author SHA1 Message Date
Aleksander Machniak
d7d7ca046f Cache refactoring (#6312) (#6781) 2020-07-18 13:51:47 +02:00
Aleksander Machniak
e2c25a1949 Fix support for an error as a string in message_before_send hook (#7475) 2020-07-18 08:24:44 +02:00
Aleksander Machniak
1e1ea25b6c Added special value 'email' to login_username_filter, it changes also logon input type (#7179) 2020-07-03 12:56:17 +02:00
Aleksander Machniak
32a7709ddf Fix cross-site scripting (XSS) via HTML messages with malicious svg/namespace 
Credits to SSD Secure Disclosure (https://ssd-disclosure.com/)
 2020-07-03 11:29:50 +02:00
Aleksander Machniak
bb3975adbe Fix insert_or_update() broken on SQLite/MSSQL/Oracle (#7465) 2020-07-02 08:41:50 +02:00
Aleksander Machniak
b22f1c9a1b Add skip-empty option to get_edit_field() (#7444) 2020-06-27 10:29:40 +02:00
Aleksander Machniak
9ee1f4b636 Merge branch 'master' of github.com:roundcube/roundcubemail 2020-06-13 13:00:11 +02:00
Aleksander Machniak
30610e867e Merge branch 'fix_encode' of https://github.com/shirosaki/roundcubemail into shirosaki-fix_encode 
Refactor the new code
 2020-06-13 12:53:31 +02:00
johndoh
9dbe666d4c Allow skins to define which layout options they support (#7235) 2020-06-13 09:25:50 +02:00
Kent Varmedal
b4dabff26c Add newline when writing logs to stdout (#7418) 
Add newline on the end of the line when printing to stdout.
 2020-06-13 07:48:13 +02:00
Aleksander Machniak
e9c592a6e8 Fix bug where subfolders of special folders could have been duplicated on folder list 2020-06-08 20:35:19 +02:00
Aleksander Machniak
4e00237cc4 Allow opening application/octet-stream attachments according to filename extension (#6821) 2020-06-07 10:45:33 +02:00
Aleksander Machniak
46d3cae2ff Security: Fix cross-site scripting (XSS) via malicious XML attachment 2020-05-30 08:35:33 +02:00
Aleksander Machniak
bda02002de Security: Better fix for CVE-2020-12641 2020-05-30 08:34:11 +02:00
Aleksander Machniak
da2bb8af6d Fix error when user-configured skin does not exist anymore (#7271) 
We fallback to the system skin not the default one.
 2020-05-23 09:44:00 +02:00
Aleksander Machniak
f6586c7cf7 Fix PHP warning: count(): Parameter must be an array or an object... in ID command handler (#7392) 2020-05-19 07:57:35 +02:00
johndoh
34a0af8964 Allow array in smtp_host config (#7296) 2020-05-16 14:05:28 +02:00
Aleksander Machniak
35c29be9b2 Remove use of ext-iconv 2020-05-03 18:33:20 +02:00
Aleksander Machniak
c39081b6a1 Fix bug in extracting required plugins from composer.json that led to spurious error in log (#7364) 2020-05-01 18:55:14 +02:00
Aleksander Machniak
219e353ac1 Fix local file inclusion (and code execution) via crafted 'plugins' option 2020-04-26 08:02:53 +02:00
Aleksander Machniak
4951d6603a Fix remote code execution via crafted 'im_convert_path' or 'im_identify_path' settings 2020-04-26 08:02:03 +02:00
Aleksander Machniak
87e4cd0cf2 Fix XSS issue in handling of CDATA in HTML messages 2020-04-26 07:59:47 +02:00
Aleksander Machniak
b35b5a1a26 Fix typo 2020-04-22 12:36:51 +02:00
Aleksander Machniak
bf34e8cf9c Fix performance issue of parsing big HTML messages by disabling HTML5 parser for these (#7331) 2020-04-22 12:33:34 +02:00
Aleksander Machniak
15ee34a438 Revert "Fix bug where session was destoryed with window close (#7251)" 
This reverts commit 32fac136db.
 2020-04-05 12:25:01 +02:00
Aleksander Machniak
4a5efe09f9 Fix bug where a special folder couldn't be created if a special-use flag is not supported (#7147) 2020-04-05 11:04:23 +02:00
Aleksander Machniak
32fac136db Fix bug where session was destoryed with window close (#7251) 2020-04-04 11:52:42 +02:00
Aleksander Machniak
e84dc4c385 Fix literals handling again 2020-03-20 19:39:19 +01:00
dessert1
e66ffae856 Fix handling keyservers configured with protocol prefix (#7295) 
`|^[a-z]://|` matches only single-character protocol shortnames, to correctly exclude e.g. `hkps://` the expression should be `|^[a-z]+://|` instead.
 2020-03-20 19:12:33 +01:00
Aleksander Machniak
2965e60c1f Support many string literals in a "line response", deduplicate code 2020-03-20 18:53:45 +01:00
Aleksander Machniak
f9c84e2646 Fix string literals handling in IMAP STATUS (and various other) responses (#7290) 2020-03-19 21:28:28 +01:00
Aleksander Machniak
7df358d64e Fix internal cache use in rcube_imap::get_message() 
Two folders, personal and shared, can contain the same UIDs, so
we should check UID and folder name when dealing with internally
cached message.
 2020-03-19 11:59:05 +01:00
Aleksander Machniak
d194b238c7 Support RFC8438: IMAP STATUS=SIZE - for faster folder size calculation (#7269) 2020-03-08 10:27:28 +01:00
Aleksander Machniak
b7410ffe89 Use mySQL charset in connection string instead of SET NAMES (#7232) 
And switch to utf8mb4 as it is what we're using right now in db schema.
 2020-02-23 19:29:45 +01:00
Aleksander Machniak
770d818dd9 Fix undefined variable 2020-02-17 14:31:57 +01:00
Paul J. Dorn
305c9355ee Fix using unix:///path/to/socket.file in memcached driver (#7210) 
off by one when stripping the memcache (sans d) compatible AF_UNIX prefix
 2020-02-06 21:55:03 +01:00
Aleksander Machniak
60c8dd2e23 Fix regression where using an absolute path to SQLite database file on Windows didn't work (#7196) 2020-01-31 16:13:28 +01:00
Aleksander Machniak
0b02e87afe Fix some strict mode warnings 2020-01-31 13:21:34 +01:00
Aleksander Machniak
fe796d4040 Remove useless pass-by-reference 2020-01-31 09:58:03 +01:00
Aleksander Machniak
d340f18295 Fix display issues with mail subject that contains line-breaks (#7191) 2020-01-25 08:44:46 +01:00
Aleksander Machniak
bdf0a6539e Relaxed domain name validation for extended TLDs support (#5588) 2020-01-19 19:21:28 +01:00
Aleksander Machniak
97e6065897 Extract RFC2231 attachment name from message headers (#6729) (#6783) 
* Extract RFC2231 attachment name from message headers (#6729)
* Workaround for attachments with invalid content type (e.g. PDF) (#6816)
 2020-01-19 18:46:02 +01:00
Aleksander Machniak
1613f3ab4c INSERT OR REPLACE implementation (#6771) 
For now with support in postgres and mysql databases.
For now used in rcube_cache, rcube_imap_cache and enigma plugin
 2020-01-19 18:43:48 +01:00
Aleksander Machniak
1376b5a647 Fix bug where message parts with no Content-Disposition header and no name were not listed on attachments list (#7117) 2020-01-18 18:31:06 +01:00
Aleksander Machniak
c138567ab5 Support 'greenmail' as an imap vendor label, don't call ID when not supported 2020-01-17 15:42:12 +01:00
Aleksander Machniak
9311c49cf4 Fix unexpected error message when mail refresh involves folder auto-unsubscribe (#6923) 2020-01-12 10:29:53 +01:00
Aleksander Machniak
fded360d84 Fix so messages in threads with no root aren't displayed separately (#4999) 2020-01-06 20:33:35 +01:00
johndoh
51a9dd631f Add support for SameSite cookie attribute (req PHP >= 7.3.0) (#6772) 2020-01-05 15:53:51 +01:00
Aleksander Machniak
e8e8c31eb3 Improve namespace roots presentation (#5012) (#6789) 
- Display a special icon for other users and shared namespace roots (Elastic)
- Change folders sorting so shared/other users namespaces are listed last

Fixes #5012.
 2020-01-05 15:46:38 +01:00
Aleksander Machniak
31b33c0f39 Don't require config.inc.php when only config-<env>.inc.php exists 2019-12-30 13:45:38 +01:00