Version 0.8.3 ()
------------------------------------------------------------------------
+ * Fix editing a draft article to be properly displayed as draft
+ in PostgreSQL setups. Thanks to Penny Leach! (garvinhicking)
+
* Fixed possible XSS in comment input validation, thanks to
Ilia Alshanetsky
+ * XML_RPC: Eliminate path disclosure vulnerabilities by suppressing
+ error messages when eval()'ing. Eliminate path disclosure
+ vulnerability by catching bogus parameters submitted
+ to XML_RPC_Value::serializeval(). (nohn)
+
Version 0.8.2 (June 29th, 2005)
------------------------------------------------------------------------
return $res;
}
- if ($entry['isdraft'] == 'false') {
+ if (!serendipity_db_bool($entry['isdraft'])) {
serendipity_plugin_api::hook_event('frontend_display', $entry, array('no_scramble' => true));
serendipity_handle_references($entry['id'], $serendipity['blogTitle'], $entry['title'], $entry['body'] . $entry['extended'], $newEntry);
}
// Send publish tags if either a new article has been inserted from scratch, or if the entry was previously
// stored as draft and is now published
- if ($entry['isdraft'] == 'false' && ($newEntry || $_entry['isdraft'] == 'true')) {
+ if (!serendipity_db_bool($entry['isdraft']) && ($newEntry || serendipity_db_bool($_entry['isdraft']))) {
serendipity_plugin_api::hook_event('backend_publish', $entry, $newEntry);
} else {
serendipity_plugin_api::hook_event('backend_save', $entry, $newEntry);
serendipity_plugin_api::hook_event('backend_entryform', $entry);
- if ( (isset($entry['isdraft']) && $entry['isdraft'] == 'true') ||
+ if ( (isset($entry['isdraft']) && serendipity_db_bool($entry['isdraft'])) ||
(!isset($entry['isdraft']) && $serendipity['publishDefault'] == 'draft') ) {
$draftD = ' selected="selected"';
} else {
projects / s9y.git / commitdiff