WB 2.08.x

! build DSN extended for PDO::MYSQL_ATTR_INIT_COMMAND = 'SET NAMES xx'

! update revision properties for all files
- include/Sensio/Twig remove Version 1.13.2

1. a unsecure require() fixed in class PHPMailer::__construct() (notice to Syncro given)

1. initialize.php a little fix in handling of languages
   ! modified translation for german language

1. typofix in framework/initialize.php

! initialize.php now blocking PHP-versions <5.3.2 and PHP with magic_quotes enabled
! droplets some new/recoded droplets added, some old ones removed

! framework/initialize.php WB will die if magic_quotes is set to 'on'

1. some fixes in upgrade-script and UpgradeHelper.
   ! update initialize.php for secure use of setup.ini.php

1. /framework/initialize.php::readConfiguration taken back last change (Revision 1996)

1. /framework/initialize.php::readConfiguration missing constants setting solved

! /framework/initialize.php::SetInstallPathConstants() setting of DOCUMENT_ROOT now compatible for windows installation
! /framework/functions.php::rebuild_all_accessfiles() Optimize rebuild access file coding

adding SERVER_TIMEZONE to table settings
insert date_default_timezone_set( SERVER_TIMEZONE ) into /framework/initialize.php
some little optimations in update-script.php

modified class Password for use with different hashing classes

implement class Password and activate it (not implemented for use yet)

little corrections in class Password

Classes Password / PasswordHash added for an essential strengthening of the password security

1. bugfix solved sections block update
   ! update sections table change some varchar to int(11)
   + upgradeHelper class for better module upgrade

1. bugfix Notice: Constant messages during new WB installation
   ! update WbDatabase SqlImport parameter,

1. protect magic setter to fix security issue in WbDatabase
   + additional arguments for Charset and TablePrefix in WbDatabase::doConnect
   + WbDatabase now can activate SET NAMES by doConnect argument
   + WbDatabase now provide TablePrefix property also (WbDatabase::TablePrefix)...

! from security reasons the new installation has changed
from the old config.php into new setup.ini.php without
using global constants for critical values like username & password and so on.

some little typo fixes in initialize.php
readConfiguration() fixed in initialize.php

some small fixes in packet Translate
added option to disable cache
added option to keep placeholders if no translation was found

1. bugfix preferences timezone, date_format, time_format settings, backend and frontend

1. solved installation issues
   ! upgrade-script sanitize pages_directory before creating access files

update initialize.php for changed Twig-dir and activated cache in Translate
initialize can handle now the new setup.ini format also.

update classes Translate, TranslateTable, TranslateAdaptorWbOldStyle
added interface TranslateAdaptorInterface
added Klasse_Translate_de.pdf
update class WbAdaptor
update /framework/initialize.php

! change help mouseover to onclick in page settings only on help icon
+ add help to input filename
! /framework/initialize.php now accept _GET and _POST to set user language

+ add var $iPhpDeclaredClasses = sizeof(get_declared_classes() set by PHP in initialize.php

Drop tables in installer fixed
Twig_Autoloader activated

some modifications concerning the new autoloader
Twig Template engine v.1.7.0
some droplets actualisized
unfinished changes in installer

changed class Database into a Singleton-Class
added forgotten 'static' keyword in ModLanguage
removed version control from sm2 - include.php

some little corrections ModLanguage/Database/initialize.php

renamed file class.database.php to Database.php
renamed class database into Database
classes SecurityException and SecDirectoryTraversalException added in globalExceptionHandler.php
CoreAutoloader() added in initialize.php
new Constants 'WB_REL' and 'DOCUMENT_ROOT' in initialize.php...

+ Installer add const DEBUG to config.php
! move const DEBUG and var $starttime from index.php to initialize.php

config.php added define to set admin-directory

made handling of config.php a little bit more easy

fixed function SanitizeHttpReferer() in consideration of subdirectories

fixed undefined fragment index in initialize.php
add $_SESSION['HTTP_REFERER'] storing active pagelink if page_id != 0

highly critical security-fix
announced on http://www.darksecurity.de/advisories/2012/SSCHADV2012-003.txt

added new constant 'DO_NOT_TRACK' set to true if a client sends the DNT-Header

little fix in calling globalExceptionHandler from inner core files

global exception handler activated

class.order completely recoded to reduce SQL requests
all other files: fix SQL-statements to SQL-strict

bugfix in initialize including SecureForm
update admintools FTAN handling

class-switcher for SecureForm added

Preparing 2.8.2 stable, last tests

YGN Ethical Hacker Group (2.8.2 / 2.9.0)

fixed headerinfos

update headerinfos

fix if upgrade module can now overwrite existing newer files in modules folder
same fix for upgrade templates

syntaxfix in initialize.php

add ini_set('display_errors', 1) (Tks to Thorn)
update headerinfos

change constant EDIT_ONE_SECTION to default false

update headertext

Ticket #909 WYSIWYG Editor width destroyes backend layout
Set EDITOR_WIDTH to 0, This way backend theme developper
can style the WYSIWYG Editor according to their themes.

Ticket #906 Search Template bug
update editor min width logic
dragableresize table

fix some PHP 5.3 deprecated functions

add two constants in /framework/initialize.php for later feature in database settings
define('EDIT_ONE_SECTION', true) to edit only one section with editor in manage sections
modify page will be loading all sections with editor
define('EDITOR_WIDTH', 900) set min width for editor...

Created 2.8.x branch

Bugfixes for ticket 728 (install without tables) - see changelog for details.

added skinable Admin Interface

Copyright notices now includes 2009

suppressed warnings in initialize.php if constant already defined; modified upgrade script to make FCK the new default editor

modified upgrade script and suppressed headers already send message (avoid issues with error reporting E_ALL)

fixed WARNING-message about possibly not defined constant

added new CAPTCHA and ASP (Advanced Spam Protection)

fixed #532 - PHP Error levels

Changed all copyright notices to include now 2008

Added 2007 to all copyright notices
Added missing ID Keywords
Removed not Unix conform line endings

Updated all copyright notices to include 2006

Added Captcha to News module

Fixed inconsistent line ending styles

Added octal to decimal conversion in initialize.php to create a proper integer value out of string file/dir mode constants.

Added some DB checking code to initialize.php

Cleaned-up some whitespace

Corrected session code.

Renamed compatibility.php to frontend.functions.php.
Moved frontend functions from class frontend to frontend.functions.php.
Removed instances of strip_slashes_dummy. Replaced $this by $wb in a couple of places.
Created file initialize.php, where all initializations now take place (moved from class wb constructor).