VeeshanVault

[Fix] Changes to random number generator code to explicitly truncate the length of the string
[Fix] Quoting on boards with HTML enabled
[Fix] Special characters on boards with HTML enabled
[Fix] Redirect to list if cancelling deletion of ranks, smilies or word censors
[Fix] Missing error message if an inactive user tried to login (Bug #1598)
[Fix] Do not alter post counts when just removing a poll (Bug #1602)
[Fix] Correct error in removal of old session keys
[Fix] Changed filtering of short search terms
[Sec] Improved filtering on language selection (also addresses a number of bug reports related to missing languages)
[Change] Backported more efficient highlighting code from Olympus
[Change] Backported zlib emulation code so that there is only a single confirmation image even if zlib is not available
[Fix] Prevent login attempts from incrementing for inactive users
[Fix] Do not check maximum login attempts on re-authentication to the admin panel - tomknight
[Fix] Regenerate session keys on password change
[Fix] retrieving category rows in index.php (Bug #90)
[Fix] improved index performance by determining the permissions before iterating through all forums (Bug #91)
[Fix] Better handling of short usernames within the search (bug #105)
[Fix] Send a no-cache header on admin pages as well as normal board pages (Bug #149)
[Fix] Apply word censors to the message when quoting it (Bug #405)
[Fix] Improved performance of query in admin_groups (Bug #753)
[Fix] Workaround for an issue in either PHP or MSSQL resulting in a space being returned instead of an empty string (bug #830)
[Fix] Correct use of default_style config value (Bug #861)
[Fix] Replace unneeded unset calls in admin_db_utilities.php - vanderaj
[Fix] Improved error handling in modcp.php
[Fix] Improved handling of forums to which the user does not have any explicit permissions - vanderaj
[Fix] Assorted fixes and cleanup of admin_ranks.php, now requires confirmation of deletions
[Fix] Assorted fixes and cleanup of admin_words.php, now requires confirmation of deletions
[Fix] Addition and editing of smilies can no longer be performed via GET, now requires confirmation of deletions
[Fix] Escape group names in admin_groups.php
[Sec] Replace strip_tags with htmlspecialchars in private message subject
[Sec] Some changes to HTML handling if enabled
[Sec] Escape any special characters in reverse dns - Anthrax101
[Sec] Typecast poll id values - Anthrax101
[Sec] Added configurable search flood control to reduce the effect of DoS style attacks
[Sec] Changed the way we create "random" values for use as keys - chinchilla/Anthrax101
[Change] Changed handling of the case where a selected style doesn't exist in the database
[Change] Changed handling of topic pruning to improve performance
[Change] Changed default forum permissions to only allow registered users to post in new forums
[Fix] corrected index on session keys table under MS SQL
[Fix] added session keys table to backup
[Fix] delete session keys entries when deleting user
[Fix] changes to support MySQL 5.0
[Fix] changes to some of the admin files to improve efficiency and remove a potential error condition when building the menu
[Fix] change truncation of username length in usercp_register.php - BFUK
[Fix] incorrect path to avatars in admin_users.php (Bug #667)
[Fix] fixed get_userdata to support correct sql escaping (non-mysql dbs) - jarnaez
[Fix] fixed captcha for those not having the zlib extension enabled
[Change] Placed version information above who is online in admin panel for better visual presence
[Sec] fixed XSS issue (only valid for Internet Explorer) within the url bbcode
[Sec] fixed XSS issue if html tags are allowed and enabled
[Sec] added configurable maximum login attempts to prevent dictionary attacks

Animalor wrote:So, Any new features that we should be aware of?

Kilmoll the Sexy wrote:my first thought was that Sylvus was involved in a circle jerk