Rev 583 | Rev 595 | Go to most recent revision | Show entire file | Regard whitespace | Details | Blame | Last modification | View Log | RSS feed
Rev 583 | Rev 585 | ||
---|---|---|---|
Line 1... | Line 1... | ||
1 | 1 | ||
2 | RECENT STUFF |
2 | RECENT STUFF |
3 | - At a lot of forms, if you press "enter", the "form" will not be submitted (e.g. "create ra" plugin), cannot reproduce? |
3 | - At a lot of forms, if you press "enter", the "form" will not be submitted (e.g. "create ra" plugin), cannot reproduce? |
4 | - Create a possibility to invoke cronjobs (VTS registration / automatic publishing) via crontab? |
4 | - Create a possibility to invoke cronjobs (VTS registration / automatic publishing) via crontab? |
5 | - Default language selection: Either always en-US, or automatical selection depending on browser language, or depending on admin setting (e.g. german companies offer a german repository by default)? |
5 | - Default language selection: Either always en-US, or automatical selection depending on browser language, or depending on admin setting (e.g. german companies offer a german repository by default)? |
- | 6 | - Check code with PHPStan level 1, 2, 3, ... |
|
6 | 7 | ||
7 | SECURITY Improvements: |
8 | SECURITY Improvements: |
8 | - Make attachment upload path configurable |
9 | - Make attachment upload path configurable |
9 | - Small security issue: A visitor can check which plugins are installed by either entering a "goto" command (e.g. "oidplus:vnag_version_check") |
10 | - Small security issue: A visitor can check which plugins are installed by either entering a "goto" command (e.g. "oidplus:vnag_version_check") |
10 | and see which error message appears, or they could try to enter "plugin/adminPages/..." using the web browser and see if the result is HTTP 200 or HTTP 404. |
11 | and see which error message appears, or they could try to enter "plugin/adminPages/..." using the web browser and see if the result is HTTP 200 or HTTP 404. |