mirror_php/moodle
1
0
Fork 0
mirror of https://github.com/moodle/moodle.git synced 2025-03-22 00:20:37 +01:00
Code Issues Projects Releases Wiki Activity
moodle/lib
History
David Mudrák 61367eb639 MDL-57531 mail: Validate the sender's email address 
The patch adds validation for the noreplyaddress setting variable, for
the explicit $replyto parameter and for the sender's email. In case of
misconfigured noreplyaddress setting, it falls back to the default
noreply address value. In case of invalid email in the user's record,
the email is not sent.

The patch also adds unit test for the value returned by the function
generate_email_processing_address() so that it can be considered as a
valid email, too.

This is supposed to significantly minimise the risk of exploiting the
vulnerability in PHPMailer's Sender field.
2017-01-04 12:35:19 +01:00
..
adodb
MDL-55999 lib: Update thirdpartylibs.xml and readme_moodle.txt
2016-10-05 10:58:10 +08:00
ajax
MDL-56958 ajax: Prefer the general renderer
2016-11-15 12:44:59 +08:00
amd
MDL-57194 core_charts: Allow colors to be overridden by setting
2016-12-01 14:44:00 +08:00
antivirus/clamav
MDL-57266 upgrade: add 3.2.0 separation line to all upgrade scripts
2016-12-05 17:10:20 +01:00
behat
MDL-57314 behat: Press enter after setting password unmask
2016-12-08 09:18:39 +08:00
bennu
classes
Merge branch 'MDL-56320-m' of https://github.com/micaherne/moodle
2016-12-19 15:05:14 +01:00
db
MDL-57266 upgrade: add 3.2.0 separation line to all upgrade scripts
2016-12-05 17:10:20 +01:00
ddl
MDL-53495 database xmldb: Ensure field tests use constant.
2016-07-06 14:45:00 +10:00
dml
MDL-57143 dml: sqlsrv drivers are going xplat \o/
2016-12-01 22:08:57 +00:00
dtl
editor
MDL-57380 behat: Check for list tags and text
2016-12-14 09:37:35 +08:00
evalmath
external
MDL-55091 phpunit: Following has been deprecated.
2016-07-26 10:11:30 +08:00
filebrowser
MDL-33741 file_info: show courses in hidden categories
2016-08-01 09:12:36 +08:00
filestorage
Merge branch 'MDL-54916' of https://github.com/mr-russ/moodle
2016-11-07 16:19:06 +01:00
form
MDL-46714 Calendar: Properly order Date & Time fields in RTL mode
2016-12-12 12:38:04 +08:00
google
grade
MDL-54751 core_grade: Fix missing require_once in grade_item get_name
2016-11-07 14:35:16 +08:00
horde
html2text
MDL-53896 core: Document Html2Text run-time overrides
2016-05-18 11:37:17 +08:00
htmlpurifier
NOBUG: Fixed file access permissions
2016-10-20 17:52:32 +02:00
jabber
jquery
MDL-56007 jquery: add back non-minified files
2016-10-04 11:16:29 +01:00
lessphp
ltiprovider
MDL-55825 core_lib: LTI tool provider library fixes
2016-10-28 10:10:43 +08:00
markdown
maxmind
MDL-48766 lib: Import MaxMind GeoIP2 PHP API
2016-09-19 08:59:38 +01:00
minify
MDL-53695 minify: switch to MatthiasMullie\Minify
2016-10-10 13:17:04 +01:00
mustache
MDL-56436 mustache: update import docs
2016-10-14 08:31:23 +01:00
password_compat/lib
MDL-51758 libraries: Reworded password.php not required
2016-07-20 12:55:09 +08:00
pear
MDL-56110 forms: debug message for php 7.1 compat
2016-10-13 09:18:34 +08:00
php-css-parser
MDL-55381 php-css-parser: Patch for Sabberworm/PHP-CSS-Parser#115
2016-09-23 10:53:30 +01:00
phpexcel
phpmailer
MDL-56000 lib: upgrade PHPMailer to 5.2.16
2016-09-29 15:09:10 +08:00
phpunit
MDL-48498 core_files: curl_security_helper_base and implementation
2016-11-08 15:11:15 +08:00
portfolio
MDL-56615 portfolio: fix php 7.0.9 warning
2016-10-28 11:56:42 +08:00
requirejs
MDL-57049 libraries: update jqueryui version in requirejs path
2016-11-21 08:57:53 +08:00
rtlcss
MDL-55224 core: Import RTLCSS-PHP into core
2016-09-23 10:49:49 +01:00
scssphp
MDL-55285 core: Include library scssphp in core
2016-09-23 10:49:49 +01:00
simplepie
NOBUG: Fixed file access permissions
2016-10-06 11:51:28 +02:00
spout
MDL-56012 lib: Update of readme and xml file.
2016-10-04 10:47:06 +08:00
tcpdf
templates
MDL-56640 templates: add example content
2016-12-20 10:02:06 +00:00
testing
MDL-56273 cache: Use cache initialise always.
2016-10-30 13:42:43 +11:00
tests
MDL-57531 mail: Validate the sender's email address
2017-01-04 12:35:19 +01:00
typo3
xhprof
MDL-55921 profiling: Adding missing vars
2016-09-14 13:48:38 +10:00
xmldb
MDL-53495 database xmldb: Use real length restriction.
2016-06-08 11:06:16 +10:00
yui
MDL-56640 yui: remove moodle-core-formautosubmit
2016-12-20 10:02:06 +00:00
yuilib
accesslib.php
MDL-57001 roles: Do access check for switchroles
2016-11-24 15:11:19 +08:00
adminlib.php
MDL-48498 admin: fix get_setting return for mixedhostiplist setting
2016-11-09 11:32:58 +08:00
authlib.php
MDL-57102 auth: Add new signup_is_enabled function
2016-11-23 19:35:08 +00:00
badgeslib.php
MDL-53718 badges: Dont display course badges when disabled
2016-11-07 15:56:26 +10:30
blocklib.php
Merge branch 'MDL-57386-master' of git://github.com/damyon/moodle
2016-12-19 15:46:54 +00:00
boxlib.php
MDL-49599 core: Fully deprecate the boxclient class
2016-07-19 14:44:51 +08:00
cacert.pem
cacert.txt
clilib.php
completionlib.php
MDL-54751 core_completion: Exclude activities pending deletion
2016-11-07 07:41:59 +08:00
componentlib.class.php
MDL-24343 core: Deprecate unzip_file
2016-08-03 09:05:55 +08:00
conditionlib.php
configonlylib.php
MDL-56978 core: fix error handling in min_fix_utf8
2016-11-16 08:59:15 -08:00
cookies.js
coursecatlib.php
MDL-55209 coursecat: Should be able to remove category idnumber
2016-11-02 09:50:34 +00:00
cronlib.php
csslib.php
MDL-56172 css: remove css optimiser
2016-09-29 16:40:40 +01:00
csvlib.class.php
customcheckslib.php
dataformatlib.php
MDL-51603 dataformats: coding_exception if output buffering
2016-04-21 16:20:36 +08:00
datalib.php
MDL-55175 course: Begin deprecation process for pring_log_*
2016-10-17 11:08:20 +08:00
ddllib.php
default.ttf
deprecatedlib.php
MDL-56407 message: Indicate user is blocked in message area
2016-11-17 09:11:37 +08:00
dmllib.php
dtllib.php
editorlib.php
emptyfile.php
enrollib.php
MDL-56971 enrol: Use autoloading in enrol_get_plugin()
2016-11-15 12:22:54 +00:00
environmentlib.php
MDL-55121 environment: check for unsuported php version 7.1
2016-11-11 12:37:07 +08:00
eventslib.php
excellib.class.php
externallib.php
MDL-56268 webservice: Format backtrace to avoid display private data
2016-11-10 16:15:31 +08:00
filelib.php
MDL-48498 core_files: Add security helper to curl class
2016-11-08 15:11:15 +08:00
filterlib.php
MDL-57283 core: fixed function call on null
2016-12-06 14:12:42 +08:00
flickrlib.php
formslib.php
MDL-56233 forms library: Fixed form identifier when mocking a form.
2016-12-05 11:27:05 +11:00
gdlib.php
MDL-55445 gdlib: Support for resizing an image
2016-08-15 10:54:28 +08:00
googleapi.php
gradelib.php
MDL-56307 course: API changes to support retrieve by time
2016-10-25 10:10:52 +01:00
graphlib.php
grouplib.php
MDL-31243 access/enrol libs: rename new groups functions
2016-09-30 09:27:59 +01:00
htaccess
index.html
installlib.php
MDL-35628 performance: Remove dirname() where possible.
2016-06-10 08:06:49 +10:00
javascript-static.js
MDL-38158 core_media: Convert media players to new plugin type
2016-11-04 17:30:40 +08:00
javascript.php
MDL-53695 lib/javascript.php: ensure full env for core_minify
2016-10-10 13:17:04 +01:00
jslib.php
ldaplib.php
MDL-53580 auth_ldap: Set default value for suspended_attribute
2016-05-10 23:04:46 +08:00
lexer.php
licenselib.php
listlib.php
mathslib.php
medialib.php
MDL-38158 core_media: Convert media players to new plugin type
2016-11-04 17:30:40 +08:00
messagelib.php
MDL-56139 core: changes after peer review
2016-11-16 10:22:52 +08:00
modinfolib.php
MDL-54751 core: introduce deletion flag for course modules
2016-11-07 07:41:59 +08:00
moodlelib.php
MDL-57531 mail: Validate the sender's email address
2017-01-04 12:35:19 +01:00
myprofilelib.php
MDL-55345 user: correct userid when linking to iplookup from profile
2016-10-05 15:08:38 +01:00
navigationlib.php
MDL-57213 navigation: Load all my course categories into navigation tree
2016-12-13 11:42:11 +08:00
oauthlib.php
MDL-52051 oauth: expires_in is optional
2016-10-10 14:02:20 +08:00
odslib.class.php
MDL-24343 core: Deprecate zip_files
2016-07-29 08:15:16 +08:00
outputactions.php
MDL-55831 output: Convert action_link to template
2016-09-23 10:55:16 +01:00
outputcomponents.php
MDL-56640 js: yui to jquery for formautosubmit in select templates
2016-12-20 10:02:05 +00:00
outputfactories.php
MDL-56958 ajax: Prefer the general renderer
2016-11-15 12:44:59 +08:00
outputfragmentrequirementslib.php
outputlib.php
MDL-57319 outputlib: raise timeout for scss/less compilation
2016-12-09 08:46:27 +00:00
outputrenderers.php
MDL-56640 templates: move select templates from boost to core
2016-12-19 12:23:54 +00:00
outputrequirementslib.php
MDL-55402 theme_noname: Convert bootstrapbase to bs4
2016-09-23 10:49:48 +01:00
pagelib.php
MDL-57101 filter: Load globally available filters on every page
2016-12-01 14:51:40 +08:00
pdflib.php
MDL-35628 performance: Remove dirname() where possible.
2016-06-10 08:06:49 +10:00
plagiarismlib.php
portfoliolib.php
MDL-56895 porfolio: give buttons bootstrap styling
2016-11-11 12:39:35 +00:00
questionlib.php
MDL-56826 questions: Add styling for boost theme
2016-11-17 14:20:52 +08:00
recaptchalib.php
MDL-56092 core_auth: Refactor recaptcha lib
2016-10-04 09:49:27 +01:00
requirejs.php
MDL-55453 core_lib: Fix usage of js_send_uncached
2016-08-03 10:18:41 -07:00
resourcelib.php
rsslib.php
searchlib.php
sessionkeepalive_ajax.php
MDL-35628 performance: Remove dirname() where possible.
2016-06-10 08:06:49 +10:00
sessionlib.php
MDL-55273 admin: Change $CFG->cookiesecure default to on
2016-08-22 09:20:32 +10:00
setup.php
MDL-56865 behat: Don't set error handler for behat install
2016-11-17 08:56:54 +08:00
setuplib.php
MDL-56902 version: Triggering a major upgrade
2016-11-23 11:50:26 +08:00
soaplib.php
statslib.php
MDL-22183 lib: Cleanup of get_next functions.
2016-08-18 10:13:31 +08:00
tablelib.php
MDL-55906 table: Update user preferences table when reset preferences
2016-12-08 15:02:04 +11:00
thirdpartylibs.xml
MDL-38158 core_media: Convert media players to new plugin type
2016-11-04 17:30:40 +08:00
tokeniserlib.php
upgrade.txt
MDL-56640 yui: remove moodle-core-formautosubmit
2016-12-20 10:02:06 +00:00
upgradelib.php
MDL-57163 install: Check curl availability before curl_version()
2016-11-29 11:46:06 +08:00
uploadlib.php
validateurlsyntax.php
webdavlib.php
MDL-56915 webdav: Increase maximum expected header size
2016-11-16 17:19:19 +08:00
weblib.php
MDL-56899 filter: suppress dom parsing errors
2016-11-14 15:16:09 +08:00
wiki_to_markdown.php
womenslib.php
wordlist.txt
xhtml.xsl
xmlize.php
xsendfilelib.php