CodeIgniter 3.1.0 was released, with some security fixes, bug fixes and enhancements.
Most importantly – it fixes a critical SQL injection bug in the ODBC database driver. The fixes to the ODBC driver mean that you can no longer use the query builder with it, nor the escape() functions. On the plus side, it now has actual query binding, as opposed to emulated.
Most importantly – it fixes a critical SQL injection bug in the ODBC database driver. The fixes to the ODBC driver mean that you can no longer use the query builder with it, nor the escape() functions. On the plus side, it now has actual query binding, as opposed to emulated.
The ODBC fixes are not backwards compatible, hence the bump in version number. We are also bumping the minimum PHP version to 5.3.7. Any previous in-progress changes, for CI3.1.0, will now be targeted for CI3.2.0.
This release includes bug fixes for the Cache, Config, Database, Database Forge, Email, File Uploading, Form Validation, Image Manipulation, Input Library, Query Builder, Session, and User Agent libraries; as well as the file and path helpers, and some common functions.
Enhancements have been made to the Database Forge, Encryption, Image Manipulation and Session libraries.