summaryrefslogtreecommitdiffstats
AgeCommit message (Expand)AuthorFilesLines
2011-01-24Bug 621572: (CVE-2010-4572) [SECURITY] chart.cgi vulnerable to header-injecti...Reed Loden1-3/+3
2011-01-24Bug 619648: (CVE-2010-4570) [SECURITY] XSS via summary in "possible duplicate...Reed Loden1-1/+2
2011-01-24Bug 619637: (CVE-2010-4569) [SECURITY] XSS in user autocomplete due to lack o...Reed Loden1-1/+8
2011-01-24Bug 621110: [SECURITY] Quips (adding/approving/deleting) lacks CSRF protectionFrédéric Buclin2-2/+12
2011-01-24Bug 621108: [SECURITY] Creating/editing charts lacks CSRF protectionFrédéric Buclin3-2/+9
2011-01-24Bug 621107: [SECURITY] Sanity checking lacks CSRF protectionFrédéric Buclin4-8/+26
2011-01-24An optional module was accidentally listed in the "required" section of theMax Kanat-Alexander1-2/+2
2011-01-24Bug 627910: Update Release Notes for Bugzilla 4.0rc2Max Kanat-Alexander1-6/+26
2011-01-23Bug 625741: Need a hook in update_fielddefs_definition to enable adding colum...rojanu3-0/+17
2011-01-22Bug 621128 - Remove trailing whitespace from '<div id="view_disabled" >'timeless1-1/+1
2011-01-22Bug 624696: We need a template hook to add a description to parameters added ...rojanu3-1/+30
2011-01-22Bug 621109: Column changing lacks CSRF protectionFrédéric Buclin2-5/+19
2011-01-21Bug 627854: Add 'form' hook to create-guided.html.tmpl similar to create.html...David Lawrence1-0/+2
2011-01-21Bug 591165: (CVE-2010-4411) [SECURITY] Bump minimum required version of CGI.p...Reed Loden1-2/+2
2011-01-21Bug 627660 - Rename "Send" button on final create account page to "Create", a...Reed Loden1-1/+1
2011-01-21Bug 626292: "Make description private" checkbox should set bz_private class o...David Lawrence3-6/+8
2011-01-21Bug 623608 - Add intro/outro extension hooks to footer.html.tmplDavid Lawrence1-2/+2
2011-01-21Bug 626658 - Add (take) link to bug edit page to allow quick assigning to the...David Lawrence2-4/+19
2011-01-15Bug 625190: Typo and Missing FK in Bugzilla::DB::SchemaDavid Marshall1-3/+6
2011-01-15Bug 623408: Message-ID is gone in bugmail for new bugsFrédéric Buclin1-2/+3
2011-01-11Bug 624349: Let the config_modify_panels hook add new parameters to existing ...Frédéric Buclin1-11/+10
2011-01-09Bug 618841: Bare word "bug" in release notesA. Shimono1-3/+3
2011-01-09Bug 622204: Bugzilla::Migrate crashes trying to create bugs with resolutions1-1/+1
2011-01-07Bug 558803: Add a parameter to specify the password complexity for new passwordsrojanu4-1/+52
2011-01-07Bug 255524: The duplicates table inherits no CSS classes when viewed in simpl...Frédéric Buclin1-0/+4
2011-01-07Provide user objects to bugmail_recipients hook. r,a=mkanat.Gervase Markham2-1/+15
2011-01-07Bug 621090 - [SECURITY] Adding saved searches lacks CSRF protectionDavid Lawrence3-0/+4
2011-01-05Document how to add user settings. r,a=mkanat.Gervase Markham3-1/+19
2011-01-05Allow extensions to add new Jobs. r,a=mkanat.Gervase Markham5-3/+45
2011-01-05Bug 622822 - add additional_links hook to front page. r,a=mkanat.Gervase Markham1-0/+1
2011-01-04Bug 595410: Make it faster to display a bug that has a lot of dependencies.Max Kanat-Alexander8-98/+168
2011-01-02Bug 622437: Remove 'colchange_columns' hook from the Example extensionTiago Mello1-7/+0
2010-12-30Bug 622105 - Misspelling in setting_info_invalid error message David Lawrence1-1/+1
2010-12-28Bug 621597: Make mod_perl.pl do the INC configuration itself, instead ofMax Kanat-Alexander2-2/+8
2010-12-28Remove unused variable, per my review commentFrédéric Buclin1-1/+0
2010-12-27Bug 618844: Make clear that the Apache module must be enabled in release notesA. Shimono (himorin)1-2/+2
2010-12-27Bug 618842: Enclose checksetup.pl between <kbd> and </kbd> tags in templatesA. Shimono (himorin)5-15/+15
2010-12-27Bug 599539: Update the mod_perl code for Apache2::SizeLimit 0.92Max Kanat-Alexander3-16/+25
2010-12-27Bug 615574: Make every search done by buglist.cgi create a list_id, so thatMax Kanat-Alexander4-25/+61
2010-12-27Bug 603762: Vertical margins between header, footer, and content are not cons...Christian Legnitto2-4/+1
2010-12-27Bug 588013: Fix typotimeless1-1/+1
2010-12-23Add contributor lines for mkanat and myself for the new BugUrl modules.Reed Loden5-5/+9
2010-12-22Bug 620796: Make Bugzilla::Migrate skip abnormal fields when doingMax Kanat-Alexander1-0/+2
2010-12-21Bug 593539: Fix the bugs activity for the see_also field.Tiago Mello1-1/+2
2010-12-20Bug 593539: Refactor See Also to use separate modules for each type of URLTiago Mello8-160/+558
2010-12-18Bug 475894 - Send the 'X-Frame-Options: SAMEORIGIN' header to help protect ag...Reed Loden1-0/+6
2010-12-16Remove some real configuration data that had crept into bzdbcopy.pl.Max Kanat-Alexander1-4/+4
2010-12-16Bug 619581: Make contrib/bzdbcopy.pl work again, and also make it work withMax Kanat-Alexander2-10/+34
2010-12-16Checkin fix for bug 619016: "DEFAULT TRUE" and "DEFAULT FALSE" were no longerMax Kanat-Alexander1-7/+11
2010-12-16Bug 313583: Remove long_list.cgi, showattachment.cgi and xml.cgi.Frédéric Buclin4-117/+4