Release Notes: This release fixes a bug in the URL parser when dealing with URLs with escaped ampersands (SF#3419799). It fixes a typo in the http request module which affected parsing of Content-Disposition headers and several index undefined errors when running in strict mode PHP.
Release Notes: This release fixes a serious loophole in the encryption module of sending the address unencrypted alongside encrypted addresses. It raises the upper bound of the random encryption key generator from 10 to 255. It fixes a bug in the URL parser on special conditions where there is no path in the relative URL.
Release Notes: The URL parser was rewritten, solving parsing of valid URL shortenings. The parser was modified to prevent returning blank pages if the requested page has over 100k characters in embedded JS or CSS. An error of incorrectly determining form type (POST or GET) was fixed.
Release Notes: A problem in which the URL parser caused major errors in the last version was fixed. The parser was updated to omit tags that begin with "<!" (namely "<!--" and "<![CDATA["). @import tags are now parsed in CSS blocks with "" or '' wrapping URLs.
Release Notes: A problem of PHP showing warnings in strict mode was fixed. Users are now allowed to set up a salt in URL encryption via "conf.php". Sending text based files (mime="text/*") under gzip compression is now supported. The page's encoding can be automatically detected. The interface was trimmed down.