WB 2.08.x

syntaxfix order::clean()

fixed order::clean()

change sql statements to strict in module droplets
fix vars in compatibility mode for versions before 2.8.1 in frontend.functions.php

fixed c&p mistake

removed stoneaged code from 2.4

sync working copy, update /INSTALL

little fix in calling globalExceptionHandler from inner core files

fixed secureform

sync forgotten changelog

activate globalExceptionHandler in inner core files

fix SQL-statements to SQL-strict

Fixed save wrong template directory in database

Ticket #1106 FatalError in groups module

Ticket #1107 Deleting users not possible
Change handling, first user will be set to inactive
secound inactive user will be show in an extra dropdown
and can now deleted from user table or reactivated

comment out $email_body .= "\n\nIP: ".$_SERVER['REMOTE_ADDR'];

set default FCKConfig.FillEmptyBlocks to true

little fix in globalExceptionHandler

global exception handler activated

class.order completely recoded to reduce SQL requests
all other files: fix SQL-statements to SQL-strict

database::field_modify() there was a bug to fix
all other files: fixed SQL-statements to SQL-strict

rename config.php.bak to config.php.new
fixed rss.php SERVER_EMAIL

move fixes 2.8.2 to 2.8.3
fixes will be shown in an extra readme
an package with the fixed files will be created
for all users who downloaded the 2.8.2 before 29 Jul-2011

Changed version to 2.8.2

preparing backend for the new installer
add SecureFormSwitcher (Admintool)

fix mssing filename in intro.php
inactive user in dropwonlist are show with line-through

! update DA language (Tks to Achrist)
! update some languages variables (Tks to Rübenwurzel, Testör)
! move function url_encode from admin/pages to framework/functions.php
! add missing svn properties in some headerinfos
! font-size correction in wb_theme (Tks to Rübenwurzel)

1. fix sctrict warnings in media if default theme ist not Argos Theme
   + add new settings value in install, upgrade-script and core module

1. change lang variable to remove upgrade-script
   ! reworked add sections in pages
   ! fix set empty href in show_menu2
   ! set show_menu2 version to 4.9.6 ...

for security reasons the 'remember me' functionality is deaktivated in class login
'Get configuration values' is optimized

found more backlinks to fix
remove not working ftan in frontend
fixed redirect in login procedure (Tks to mr-fan)
update droplet LoginBox, additional parameter $redirect
remove double config call in media (Tks to Testör)

fixed version.php

change to Release Candiate 7

languages Typo fix (Tks to pcwacht)
update intro, fixed saving
fixed install/save.php (Tks to pcwacht)

Forgotten upload changelog and version.php

update jquery-min to version 1.6.2
update jquery-ui-min to version 1.8.14
fix index error in media upload (Tks to DBS)
add missing nopreview.jpg
update media browser not to show forbidden files
remove unused jquery archiv folder

update some headerinfos
fix missing header for some error messages

fix form modul (tks to our Tester)

bugfix in initialize including SecureForm
update admintools FTAN handling

fixed little bug in moveCssToHead()

fixed Ticket 1050 Bug in include/phpmailer/class.phpmailer.php with Lotus Notes
fixed Ticket 573, 939 Bad formatting of e-mail received from form submissions
fixed Ticket 1009 cannot change user password without changing Email in preference

class-switcher for SecureForm added

correct all misspellings on finnish language file (Tks to invisigoth)

Ticket 1101, phtml|php5|php4|php|cgi|pl|exe|com|bat|src| will be hardcoded
additional you can set more extension in settings extended in field rename_file_types
rename_file_types now is a blacklist and will no longer be renamed to .txt

update admintools modules to work with SecureForm Patch from NorHei

Ticket 1099: change title for add_child_page in page tree

Ticket 833 fixed markup for table cells in view.php
change themes.css to make style more flexible in success.htt and error.htt
backend themes: add js function redirect_to_page(url, timer) to redirect without message

Preparing 2.8.2 stable, last tests

add PL languages to news and captcha_control (tks to vixrealitum)
update PL language for WebsiteBaker (tks to vixrealitum)

fixed Bug-Ticket #1096

in /framework/functions.php::media_filename - replace whitespaces by _
/upgrade-script.php - some small fixes

fix target in admin/media/browse.php

change status to RC6

replace eregi with pregmatch in search_modext (Tks to Thorn)

local sync

cleanup some code in edit_module_files.php

secure fix edit_module_files.php
fix wb_wrapper_edit_area.php

syncronice version (no data changed)

fixed validation of loginname (admin/users and signup)

small validation fixes in backend themes

fix wrong url in captacha

remove auto including YUI Framework in backend for modules, enable with >print_footer(true)
>print_error and ->print_success too accept a message as array
auto validate in frontend if style block inside body tag
captcha now XHTML valide

bug fixed in class.database.php methode field_add in call field_exists
update search, pls test, (Tks to Thorn)

1. recoded /modules/admin.php info_banner, now compare with modify in pages
2. security fixes remove defined WB_PATH for backend templates
3. fixed class.admin.php missing $TEXT declaration, add get_section_details

add missing methode is_group_match in class.wb.php

syncronice version (no data changed)

little fixes for xhtml-validity in '/include/captcha/captcha.php'

little fixes for xhtml-validity module 'form'

update jquery to Version 1.5.1 and jQuery UI to Version 1.8.10

fix entities converting in select languages (Tks to the community)
see http://www.websitebaker2.org/forum/index.php/topic,20547.msg140512.html#msg140512

sync

fixed bug : Call to undefined method wb::preprocess()

update NL language file (Tks to Argos)

add page position in get_page_details

fix save settings dir and file mode (Tks to the community)

add forgotten javascript variable

update Argostheme to version 1.5 (Tks to Argos)
validation fixes
call edit_full_area on the fly

validation fixes in wb_theme

validation fixes

redefined wrong admin backlinks

typo fix and simplify used_octets calculation in SecureForm::getFingerprint()

add FINGERPRINT_WITH_IP_OCTETS to table settings

update SecureForm.php to work behind Proxies

fix Undefined index: WARN_PAGE_LEAVE

YGN Ethical Hacker Group (2.8.2 / 2.9.0)

update rel handling FCKeditor for urls

remove new function see http://www.websitebaker2.org/forum/index.php/topic,20268.msg139557.html#msg139557

add redirect timer description in settings.php

fixed unsafe sql queries

fixed unsave sql-queries in /admin/pages/settings

fix wrong error message in media
backend start warning if upgrade-script exists

1. Bugfix for Ticket 900

fixed wb::password_chars

1. Bugfix for Tickets 965, 966 and 910

1. Bugfix for build 1409

+ Ticket 1058 added warn_page_leave (currently only in wysiwyg)

small changes in handling of SM2_NO_TITLE ans SM2_XHTML_STRICT

1. various Security fixes, thanks to secunia and others

1. Security fix to stop users from changing module contents without permission, thanks to Michael Schwarz

1. Security fix (XSS) in form module, thanks to Michael Schwarz

Security fix in pages

small fix