WB 2.08.x

1. typofix in class TranslateTable
   ! framework/functions.php set function create_access_file to deprecated
   ! set ModLanguage.php to deprecated
   ! add methode escapeString to class WbDatabase
   ! update upgrade-script.php
   ! add getter property LastInsertId to class WbDatabase

update initialize.php for changed Twig-dir and activated cache in Translate
initialize can handle now the new setup.ini format also.

update classes Translate, TranslateTable, TranslateAdaptorWbOldStyle
added interface TranslateAdaptorInterface
added Klasse_Translate_de.pdf
update class WbAdaptor
update /framework/initialize.php

added temporary class WbAdaptor (replacement for future registry) needed for some new objects

added new translation classes (Translate/TranslationTable/TranslateAdaptorWbOldStyle) for easy handling of language files
initialize and activate class Translate in /framework/initialize.php

1. bugfix mkdir(): Invalid argument if create acessfile

1. fixed index depth in access files

! settings move website_signature to mailer settings
! fix html validate error in pages sections
! add pages field page_code to class.frontend.php
! optimized jsadmin backend.css

1. fixed redirect checking in class.login.php

1. security fix CRLF injection/HTTP response splitting

! update media in look to the changes in user management

! forgot to upload class.wb.php

! add ErrorMsgException in /framework/globalExceptionHandler.php
! ErrorMessage "ADMIN_INSUFFICIENT_PRIVELLIGES" now can be styled
by the /admin/skel/themes/htt/ErrorMsgFile.htt template
! add css selectors to wb_theme

1. fixed Undefined variable: nNumRows in \admin\users\index.php
2. fixed Undefined variable: admin in \admin\admintools\tool.php
   ! show more information in awaiting activation /admin/users
   ! set input passord to autocomplete off /admin/users and /admin/prfeferences...

1. fixed Illegal string offset 'time' in \framework\SecureForm.mtab.php
   ! add delete Outdated Confirmations in backend
   ! show waiting Activations if exists in user management
2. fixed html validaton errors in user management
   ! security fixes in admin/preferences/...

! upgrade-script: update if filesRemove or remove dirs failed
! update methode StripCodeFromText, add remove ,
! security fixes in form modul with StripCodeFromText

! supress frontend preferences, if user have no permission for it

1. fixed save search settings

! update group permission,

! update Group Permission, add module_advanced
! upgrade-script will be updating Adminitrator Group

1. fixed double content

1. fixed language uninstall, change mysql to strict
   ! secure fix for search update in settings, search_footer now can be empty
   ! change ->fetchRow() to ->fetchRow(MYSQL_ASSOC) in frontend.functions.php

1. fixed maintenance frontend

+ add maintance modus in backend

! change help mouseover to onclick in page settings only on help icon
+ add help to input filename
! /framework/initialize.php now accept _GET and _POST to set user language

+ add methode StripCodeFromText in class.wb to clean injection
! rebranding the admin/settings and security fixes
! a few new styling in backend wb_theme
! beginning aa lot of account changes like correction of $_SESSION indexe, security fixes
+ add head.load.min.js and head.min.js to /include/jquery/ to style HTML5 templates

1. fixed issues with database names
   WbDatabase::getTableEngine() changed SQL statement to strikt.
   ! remove empty warning box if you aren't sysadmin
   ! change order errorhandling in installation save.php
2. typofix in news/upgrade.php $MESSAGE
   ! Framework/frontend.functions.php change file_exists to is_readable

! recoded module news,form,wysiwyg upgrade to work with upgrade-script

1. fixed methode index_add in WbDatabase, always faild

! during Reformat/rebuild all existing access files in upgrade-script
root_parent will be set to page_id
! change multi-dimensional arrays (variables) to similar arrays in framework/functions.php

1. fixed Duplicate entry for key 'PRIMARY' if adding a new pageX
   search for ->page['root_parent'] == 0 in module and shoe_menu2 calls
   page['root_parent'] has always the page_id from the first adding new page in level

1. fixed issues with older table strucure for earlier WB installations

1. add prefix wb_ to class name for content container
   if module has the same name as a html markup e.g code

! add div container in page_content for each sections,
! update droplets SectionPicker, ShowWysiwyg and ShowRandomWysiwyg
! put sec_anchor in this div, sec_anchor fixed in all found files
sec_anchor default now set to "section_",
sec_anchor can't be empty for future developement

1. /form/view.php fixed wrong compare syntax

! replace more invalid char in secureform.mtab to work with settings_page

1. fixed missing $admin-print_header() by security warning
2. fixed secureform.mtab because settings_page failed

! change redirect logic for registered pages

! update folder framework class.login, admin/login, admin/skel/htt

! update headerinfo
! change os_version request if os is not windows

! /framework/class.frontend.php
! set $_SESSION['HTTP_REFERER'] to WB_URL if menu url is a registered page
! set some header("Location:.. to new method send_header(

! /framework/frontend.functions
! change multi-dimensional arrays (variables) to similar arrays
! method page_content, add parameter $echo true to print $content, false return $content

! change multi-dimensional arrays (variables) to similar arrays
+ add variables for backend-menu, header.htt and footer.htt

! Fixed IDKEY in Secureform.mtab to solve issues whith Security warnings
! on pages that used a lot of IDKEYS. (fixed by NorHei)

! optimize some methods
+ add method send_header, replace header('Location:... with new method
+ if header send failed you get a manuell redirected link, so script don't break

+ add var $iPhpDeclaredClasses = sizeof(get_declared_classes() set by PHP in initialize.php

ModLanguages:: fixed the order of loading languages

ModLanguage modified for auto fallback to DEFAULT_LANGUAGE
globalExceptionHandler added AppException, SecurityException, SecDirectoryTraversalException
Errormessage for old class.database modified

fixed Errorhandling for old class.database

Drop tables in installer fixed
Twig_Autoloader activated

some modifications concerning the new autoloader
Twig Template engine v.1.7.0
some droplets actualisized
unfinished changes in installer

last fixes for use of page_icon s.o.

! update upgrade-script, now don't overwrite existings values in settings
+ add field tooltip to table pages in installer
! change some module tool_icon.png (Tks to Stefek)
! add date_time string to backup_droplets.zip
- search and comment out founded require_once(WB_PATH."/framework/class.database.php"); ...

changed class Database into a Singleton-Class
added forgotten 'static' keyword in ModLanguage
removed version control from sm2 - include.php

some little corrections ModLanguage/Database/initialize.php

renamed file class.database.php to Database.php
renamed class database into Database
classes SecurityException and SecDirectoryTraversalException added in globalExceptionHandler.php
CoreAutoloader() added in initialize.php
new Constants 'WB_REL' and 'DOCUMENT_ROOT' in initialize.php...

1. validation fix in print_footer, class.database
   ! replace settings and default header

1. fixed backup_droplets working with php as Apache Module (Tks to Ruebenwurzel)
   ! update function rm_full_dir in /framework/functions.php
   ! To disable Run-time notices and receive warnings

1. fixed /framework/functions.php missing global $MESSAGE in function rebuildFolderProtectFile
   1

1. fixed add-ons upload error (tks to DBS)
   + add tool_icon.png to core module
   ! update outpu_filter success an error messages
   ! small redesign wb_themes
2. fixed old.format.inc.php fileformat to unix

added new global exceptionhandler (class AppException)

! settigs.php add fields dev_infos and page_icon_dir
+ add developer info to footer
! update class.admin.php, footer.htt

added new getter 'getQueryCount' in class database

add replyto to form module (see DEVINFOS)

fixed change_mode() against a very old problem with invalid calling arguments

fixed a little problem with chmod()

add argument 'replyTo' into class.wb::mail()

add additional exeptionhandling in globalExceptionHandler

+ move admin/themes/templates/ to admin/skel/themes/htt/
! and update class.wb.php, upgrade-script.php

+ Installer add const DEBUG to config.php
! move const DEBUG and var $starttime from index.php to initialize.php

config.php added define to set admin-directory

made handling of config.php a little bit more easy

! update correct_theme_source and fixed the call in all files

fixed function SanitizeHttpReferer() in consideration of subdirectories

little fixes in classs database and add new readonly property DbName

little designfix in forgot_form.php
fix media if uploading zip files with folder, than create FolderProtectFiles

fixed undefined fragment index in initialize.php
add $_SESSION['HTTP_REFERER'] storing active pagelink if page_id != 0

highly critical security-fix
announced on http://www.darksecurity.de/advisories/2012/SSCHADV2012-003.txt

little Typo-fix in database::SqlImport()

little Regex-fix in database::SqlImport()

added new method SqlImport() to class database

fix class.login, when name and pass are both empty, no longer call increase_attemps
some redirect updates in frontend account files

add linebreak in backend message for 'delete install folder...'

secureForm Fix for hosting with load balancing

typofix in function make_dir

! wb_quickSkin_28.php create _skin folders with folder protect file
! add a 3th parameter to function make_dir to allows the creation of nested directories specified in the pathname. Defaults to TRUE

+ add languages vars in languages files
+ add upload error mesages moduleinstall
+ add index.php if not exists in function createFolderProtectFile
! corrected changed coding between login_form and forgot_form

christmas time corrected wrong files

fix wrong background url in "Website Under Construction"

! changes in code modul
+ add function getTableEngine to class.database
+ add Quickskin to include folder
+ add reworkes Droplet SectionPicker to load modules frontend.css

new backend theme handling (Tks to Stefek)
some fixes in install

small changes in INSTALL and UPGRADE (Tks to unawave2)
update upgrade-script showing from Version to Version (Tks to unawave2)
add Servicepack version to header.htt

add new backend theme handling (Tks to Stefek)

account/signup.php, check if user is already logged
fix non object message in framework/functions.php

settings for pwgen updated

fixed strict notice warning in class.wb
change editor for intropage to editarea
add missing slash in themes

added new constant 'DO_NOT_TRACK' set to true if a client sends the DNT-Header

fixed field_remove