mirror_php/winter
1
0
Fork 0
mirror of https://github.com/wintercms/winter.git synced 2024-06-28 05:33:29 +02:00
Code Issues Projects Releases Wiki Activity
winter/modules/backend/formwidgets
History
Luke Towers 950c341c49 Prevent privilege escalation from crafted requests 
Follow up to 2046efb51d.
The previous commit prevented users from visually managing permissions that they themselves didn't have access to, this follow-up commit enforces that limitation serverside to defend against crafted privilege escalation attacks by authenticated users.
2017-07-10 18:36:43 -06:00
..
codeeditor
Respect whitespace on disabled codeeditors
2016-11-28 15:35:00 -06:00
colorpicker
Fixes colorpicker when used inside a popup
2016-05-25 06:37:03 +10:00
datatable/partials
datepicker/partials
Added firstDay option to datepicker form widget (#2940)
2017-06-28 07:23:59 -06:00
fileupload
Various security and UI fixes
2017-04-09 08:00:56 +10:00
markdowneditor
Buttons container has an inner toolbar
2016-07-23 09:53:23 +10:00
permissioneditor
Adds extra flavor to buttons
2016-04-07 20:17:48 +10:00
recordfinder
Various security and UI fixes
2017-04-09 08:00:56 +10:00
relation/partials
Remove cms.tempDir - use temp_path()
2015-02-07 15:42:20 +11:00
repeater
Fix repeater title generation in readOnly mode
2017-07-09 13:06:23 -06:00
richeditor
Support changing the global default for richeditor buttons (#2937)
2017-07-04 08:10:58 -06:00
taglist/partials
Fixes taglist working inside a repeater
2016-11-07 08:08:48 +11:00
CodeEditor.php
{@inheritDoc} -> @inheritDoc
2017-03-16 06:26:14 +11:00
ColorPicker.php
{@inheritDoc} -> @inheritDoc
2017-03-16 06:26:14 +11:00
DataTable.php
{@inheritDoc} -> @inheritDoc
2017-03-16 06:26:14 +11:00
DatePicker.php
Added firstDay option to datepicker form widget (#2940)
2017-06-28 07:23:59 -06:00
FileUpload.php
Code dusting (#2826)
2017-04-24 21:38:19 +10:00
MarkdownEditor.php
{@inheritDoc} -> @inheritDoc
2017-03-16 06:26:14 +11:00
PermissionEditor.php
Prevent privilege escalation from crafted requests
2017-07-10 18:36:43 -06:00
RecordFinder.php
Support field being disabled in filterFields()
2017-06-22 09:45:29 -06:00
Relation.php
Remove unused descriptionFrom property
2017-07-09 09:48:17 -06:00
Repeater.php
Add support for readOnly Repeater Widgets (#2960)
2017-07-08 13:34:04 -06:00
RichEditor.php
Support changing the global default for richeditor buttons (#2937)
2017-07-04 08:10:58 -06:00
TagList.php
Improve support for non-id primary keys
2017-07-04 18:55:42 -06:00