highly critical security-fixannounced on http://www.darksecurity.de/advisories/2012/SSCHADV2012-003.txt
added new constant 'DO_NOT_TRACK' set to true if a client sends the DNT-Header
little fix in calling globalExceptionHandler from inner core files
global exception handler activated
class.order completely recoded to reduce SQL requestsall other files: fix SQL-statements to SQL-strict
bugfix in initialize including SecureFormupdate admintools FTAN handling
class-switcher for SecureForm added
Preparing 2.8.2 stable, last tests
YGN Ethical Hacker Group (2.8.2 / 2.9.0)
fixed headerinfos
update headerinfos
fix if upgrade module can now overwrite existing newer files in modules foldersame fix for upgrade templates
syntaxfix in initialize.php
add ini_set('display_errors', 1) (Tks to Thorn)update headerinfos
change constant EDIT_ONE_SECTION to default false
update headertext
Ticket #909 WYSIWYG Editor width destroyes backend layoutSet EDITOR_WIDTH to 0, This way backend theme developper can style the WYSIWYG Editor according to their themes.
Ticket #906 Search Template bugupdate editor min width logic dragableresize table
fix some PHP 5.3 deprecated functions
add two constants in /framework/initialize.php for later feature in database settingsdefine('EDIT_ONE_SECTION', true) to edit only one section with editor in manage sectionsmodify page will be loading all sections with editordefine('EDITOR_WIDTH', 900) set min width for editor...
Created 2.8.x branch
Bugfixes for ticket 728 (install without tables) - see changelog for details.
added skinable Admin Interface
Copyright notices now includes 2009
suppressed warnings in initialize.php if constant already defined; modified upgrade script to make FCK the new default editor
modified upgrade script and suppressed headers already send message (avoid issues with error reporting E_ALL)
fixed WARNING-message about possibly not defined constant
added new CAPTCHA and ASP (Advanced Spam Protection)
fixed #532 - PHP Error levels
Changed all copyright notices to include now 2008
Added 2007 to all copyright noticesAdded missing ID KeywordsRemoved not Unix conform line endings
Updated all copyright notices to include 2006
Added Captcha to News module
Fixed inconsistent line ending styles
Added octal to decimal conversion in initialize.php to create a proper integer value out of string file/dir mode constants.
Added some DB checking code to initialize.php
Cleaned-up some whitespace
Corrected session code.
Renamed compatibility.php to frontend.functions.php.Moved frontend functions from class frontend to frontend.functions.php. Removed instances of strip_slashes_dummy. Replaced $this by $wb in a couple of places.Created file initialize.php, where all initializations now take place (moved from class wb constructor).