File Release Notes and Changelog
Notes:
===== V 1.1 =====
This major release includes many small improvements, a re-write of the database access code, proper escaping of SQL inputs, and a clean-up of the code and organization. Upgrade instructions from v 1.0.* to v 1.1 are provided. All users are urged to upgrade to this version. Versions 1.0.* are no longer supported.
Changes:
===== V 1.1 =====
* Proper login for admin area, rather than needing htaccess.
* Complete rework of db abstraction layer. Using a class for MySQL (MySQL users do not need ADODB anymore).
* Removed the use of htmlspecialchars before saving to the db. Replaced with proper db escape function. Fixed sql injection vulnerability. Fixed Bug ID: 2219743.
* Added htmlspecialchars to the output of the values to the browser.
* Provided an upgrade script (reverse htmlspecialchars in the db) and instructions. For upgrade from 1.0.* to 1.1.
* Combined the multiple function files into one functions lib file included in the config rather than including repeatedly all over the place.
* Changed amazon web service info section to OFF (false) by default in config.
* Removed the redundant manage.php page. Tidy up admin interface a bit.
* Changed short php tags to full php tags.
* Improvements to search. Added search help buttons.
* Added 'clear' search results link.
* Removed unused config vars.
* Misc code tidy-up, including splitting some large functions into smaller ones.
* Improve layout of add/edit forms. Align the text fields nicely.
* Improve layout when viewing book details.
* Created config var to add META tags to block site indexing by search engines.
* Cover image caching now works with ISBN-13 numbers (uses a function to convert them to ISBN-10 numbers for Amazon).
* If you change the ISBN on the Edit screen, it will automatically check the "re-cache cover images" check-box.
* Made the 'small' cover image a bit bigger.
* ADODB is no longer bundled with AV Book Library.
