1
0
mirror of https://github.com/vichan-devel/vichan.git synced 2024-12-15 00:51:18 +01:00
Commit Graph

292 Commits

Author SHA1 Message Date
czaks
e561128793 fix error while installing themes; thanks xixi 2015-04-23 07:58:41 +02:00
8chan
2be56352a1 Merge https://github.com/ctrlcctrlv/infinity 2015-04-06 20:12:42 -07:00
8chan
bd128bf465 This clean feature is too SQL intensive. Only check clean if in mod.php 2015-04-06 20:12:37 -07:00
czaks
372e3fc3fc uncache themes on settings change 2015-04-06 19:15:03 +02:00
8chan
f587bd0b69 Merge https://github.com/ctrlcctrlv/infinity 2015-04-03 03:04:08 -07:00
8chan
d2a1b9c5b3 Edited page in log 2015-04-03 03:04:03 -07:00
Fredrick Brennan
31d160d25b Make it so you can edit/remove embed, post preview 2015-04-03 15:37:55 +08:00
Fredrick Brennan
1e91310f6a Cyclical threads ♺ 2015-04-03 14:56:28 +08:00
Redanon
dac1fbb36c Fix misleading modLog() message in dismiss 2015-04-02 07:35:14 +08:00
Fredrick Brennan
16b259ff15 Change edited_at to INT(11) 2015-03-30 11:12:35 +08:00
8chan
cd1c1730e4 Improve ?/reports API 2015-03-29 19:42:25 -07:00
Fredrick Brennan
0b0528b426 Reports JSON API, some style fixes 2015-03-30 07:13:57 +08:00
8chan
972b3450cf Run Purifier on Markdown's output, stop XSS bug 2015-03-29 15:32:14 -07:00
8chan
076b64aba4 Add file_unlink on page delete and prevent index overwrite 2015-03-28 19:34:01 -07:00
Fredrick Brennan
12fa8ec3ef Edit static pages commit 2015-03-29 09:18:14 +08:00
8chan
83cbe5977b less_ip is now per board, not site-wide 2015-03-06 02:00:03 -08:00
8chan
d970baa5d8 Public action logs commit (log.php)
Note: In a previous commit, I began making inc/mod/auth.php more modular with the check_login() function. Including it does NOT check mod login by default anymore like it does on vichan. You have to call check_login(). I've finally included it in inc/functions.php. If you have any custom pages that use inc/mod/auth.php, just including functions.php is enough now.
2015-02-25 17:21:49 -08:00
8chan
aa1d2b3128 /infinity/ board with locked owner password 2015-02-20 17:16:06 -08:00
8chan
3e0134e53e New feature: Board owner logs of their board 2015-02-19 22:58:30 -08:00
8chan
0389b280d8 Fix mod_move if file deleted or spoiler 2015-02-16 16:35:15 -08:00
8chan
c7f26b31c1 board_log function, ?/log🅱️test 2015-02-16 16:28:22 -08:00
8chan
da3927ed17 Put a limit on ?/recent 2015-01-29 19:01:11 -08:00
Fredrick Brennan
f5b7e8adfe Merge pull request #315 from forklessanon/feature-3
Added mod function to spoiler all images in a given post
2015-01-22 16:11:25 +08:00
8chan
f9119b16b9 Ban appeals for admin/globals fix 2015-01-21 23:52:50 -08:00
8chan
980d8784e5 Tinyboard is defunct. No reason to keep the update checker 2015-01-06 01:34:54 -08:00
8chan
0a2dfedb0e Ban appeals: limit by board, make more efficient, enable in infinity 2015-01-06 01:34:27 -08:00
8chan
8ac83fbba6 Merge
Conflicts:
	inc/mod/pages.php
2014-12-24 14:19:35 +00:00
8chan
87e914948b SECURITY / XSS : ?/edit allowed arbitrary HTML to be added by any user thru addition of <tinyboard raw html>1</tinyboard>
This allowed ANY user with ?/edit privilege to also have raw_html regardless of whether they had $config['mod']['rawhtml']

Now, any changes to <tinyboard> markup modifiers via ?/edit are not allowed. They are removed at read time, and before write they are removed again and the ones in the database (which should be clean...) are inserted instead.

Please immediately apply this patch to your instance if you are running any version of 8chan/infinity.
2014-12-24 06:08:19 -08:00
Forkless
22878daecd Added mod function to spoiler all images in a given post 2014-12-19 06:43:01 -06:00
Fredrick Brennan
14fce406a8 Merge pull request #308 from forklessanon/patch-6
Added tripcode removal to post editing
2014-12-16 09:42:53 +08:00
Forkless
d457cb57b8 Added tripcode removal to post editing 2014-12-14 22:49:54 -06:00
8chan
d705606729 Allow a board called news to exist 2014-12-14 03:27:26 -08:00
8chan
faa51accaa We dynamic pages now, read.php 2014-11-21 04:05:20 -08:00
Forkless
0df4afe917 Security fix: Added defaults to the banned boards list to protect core folders of the codebase.
Added banned boards restriction to the mod_new_board function.
2014-11-10 06:35:53 -06:00
8chan
a754155d5b Multiple board volunteers patch 2014-10-28 23:23:17 -07:00
8chan
2d296f8c8a use constants 2014-10-22 21:01:02 -07:00
8chan
2edd6282f2 Fix chained WHERE, fix permissions 2014-10-22 20:12:26 -07:00
8chan
cfb31c53af Merge https://github.com/ctrlcctrlv/8chan 2014-10-22 19:20:28 -07:00
8chan
a8effc870d Fix bans page on Firefox 2014-10-22 19:17:18 -07:00
unknown
bac2307140 [#184] Added config+functionality for removing clean status local+global if a post is edited. Fixed an issue where marking a post clean wouldn't trigger template reconstruction. 2014-10-21 08:10:07 -05:00
unknown
9c5ec12aaa [#184] Reports made to clean posts are now ignored correctly (and in accordance with the local/global duality). Marking posts clean dismisses posts (also in accordance with local/global duality). Fixed up some templating issues (now display more correct messages and omit actions that are invalid). Moved Clean action off post-level and into reports action. 2014-10-21 07:50:25 -05:00
unknown
4c8e920303 [#184] Resolved duplicate report issue. Added rudamentary Clean functionality. 2014-10-20 10:17:19 -05:00
unknown
7cac272396 [#184] FUCK PLEASE WORK 2014-10-19 12:10:50 -05:00
unknown
01c80bd7ad [#184] System almost completely functional. Woo. 2014-10-19 11:07:07 -05:00
unknown
a8a843bf4b [#184] Added Promote and Demote to reports. CSS improvements. 2014-10-19 00:07:16 -05:00
unknown
3654c4f7ef Signed-off-by: unknown <8n-tech@users.noreply.github.com> 2014-10-19 00:00:58 -05:00
unknown
2d6d449bd2 [#184] Added <body> tag classes. Style selector now adds a <body> class. Moved board list under moderator dashboard. 2014-10-18 20:07:04 -05:00
unknown
9920a51ff5 - Resolved board creation script throwing SQL error for mismatched column count.
- Resolved warnings would be thrown if inc/dnsbls.php did not exist.
- Resolved problem where shell_exec_error was incorrectly reporting a success in instances where 'md5sum' was not supported, resulting in "'md5sum'" literally being recorded as the file hash. This then lead to hex2bin throwing an error on page load, preventing access to threads (among other problems).
2014-10-17 02:32:39 -05:00
8chan
9bf6ebec43 SECURITY: IPs were still being shown on IP_less in a few places 2014-10-12 16:34:34 -07:00
8chan
a838e2986c Only show IPs in ?/bans if mod has show_ip 2014-10-10 09:52:23 -07:00