summaryrefslogtreecommitdiffstats
path: root/Bugzilla/CGI.pm
AgeCommit message (Expand)AuthorFilesLines
2016-09-12Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to bmo/master + local...Dylan William Hardison1-21/+10
2015-12-01Bug 1229198 - When saving a buglist from a saved search as a CSV file, set th...Byron Jones1-5/+4
2015-11-25Bug 1227866 - infinite loop consuming resources when PATH_INFO setByron Jones ‹:glob›1-1/+9
2015-11-05Bug 1196743 - Fix information disclosure vulnerability that allows attacker t...Dylan Hardison1-0/+28
2015-06-03Bug 1170414: Redirection loop in *.cgi when path-info is presentByron Jones1-1/+5
2015-04-24Bug 1157395: CSRF in log in formDavid Lawrence1-0/+13
2014-11-04Bug 1093622: Backout bug 1090427 for causing: authenticated calls from bzapi ...Byron Jones1-13/+0
2014-11-04Bug 1090427: Backport bug 713926 to bmo/4.2 to protect against csrf for login...David Lawrence1-0/+13
2014-07-21Bug 1041559: "Please wait while your bugs are retrieved" shown above menu hea...Byron Jones1-0/+15
2014-07-10Bug 1032323: canonicalise_query() should omit parameters with empty values so...Ed Morley1-2/+5
2014-06-18Bug 1026863: buglist.cgi enters in an infinite loop if called without argumen...Frédéric Buclin1-0/+4
2013-09-30Bug 922246 - backport upstream bug 851267 to bmo/4.2 for performance improvem...Dave Lawrence1-4/+4
2013-08-12Bug 894878 - CSV output template for request queues has gone awayDave Lawrence1-0/+25
2013-08-09Bug 903514 - Backport upstream bug 569177 for etag support to bmo/4.2Dave Lawrence1-0/+20
2013-07-15Bug 892601 - Port over upstream native REST patch (bug 866927) to bmo/4.2Dave Lawrence1-1/+1
2012-09-09Merge from bugzilla/4.2Reed Loden1-0/+4
2012-09-09Bug 671612: Send "X-Content-Type-Options: nosniff" with every responseMatt Selsky1-0/+4
2012-08-31Merge from bugzilla/4.2Reed Loden1-1/+11
2012-08-29Fix more bustage caused by Bug 772953Byron Jones1-4/+6
2012-08-29Fix bustage caused by Bug 772953Byron Jones1-1/+4
2012-08-28Bug 772953: Remove the token from buglist urlsByron Jones1-0/+5
2012-08-15Bug 779088 - Allow extensions to whitelist PATH_INFODave Lawrence1-1/+12
2012-08-15Bug 771100: Unable to attach a file to a bug with perl 5.16Frédéric Buclin1-1/+1
2011-11-21Bug 680771 - Send X-XSS-Protection header for XSS prevention/blockingDave Lawrence1-0/+4
2011-05-31Bug 647649: Change the old "Boolean Charts" UI into the new AND/ORMax Kanat-Alexander1-3/+12
2011-05-29Bug 655847: Accessing buglist.cgi throws: Use of inherited AUTOLOAD for non-m...Frédéric Buclin1-9/+1
2013-05-04Bug 652625 - Empty queries still get run because the list_id parameter is add...David Lawrence1-1/+3
2011-03-14Bug 637977: Re-setup CGI.pm global variables on every request under mod_perl,Max Kanat-Alexander1-13/+24
2010-12-28Remove unused variable, per my review commentFrédéric Buclin1-1/+0
2010-12-27Bug 615574: Make every search done by buglist.cgi create a list_id, so thatMax Kanat-Alexander1-0/+49
2010-12-18Bug 475894 - Send the 'X-Frame-Options: SAMEORIGIN' header to help protect ag...Reed Loden1-0/+6
2010-12-06Bug 607138: Don't send the Strict-Transport-Security header for theMax Kanat-Alexander1-2/+6
2010-11-03Bug 600464: (CVE-2010-3172) [SECURITY] Content/Header injection due to non-ra...Byron Jones1-1/+2
2010-10-28Bug 607966: Use of qw(...) as parentheses is deprecated since Perl 5.13.5Frédéric Buclin1-3/+1
2010-09-29Bug 600475 - Support the 'includeSubDomains' flag as an option for the 'Stric...Reed Loden1-2/+6
2010-09-28Bug 594990: Make the Strict-Transport-Security HTTP header only be sentMax Kanat-Alexander1-2/+2
2010-07-16Bug 398308: Make Search.pm take a hashref for its "params" argumentMax Kanat-Alexander1-12/+0
2010-07-15Bug 521416: Some web servers fail to set the QUERY_STRING parameterbyron jones (glob)1-0/+3
2010-06-27Bug 575097 - "New STS header in Bugzilla::CGI causes malformed header error d...Reed Loden1-5/+6
2010-06-26Bug 562475 - "Bugzilla should use strict-transport-security (STS) headers"Reed Loden1-0/+6
2010-06-24Bug 574166: Make clean_search_url take into account the new email3 fieldsMax Kanat-Alexander1-1/+1
2010-06-16Bug 24896: Make the First/Last/Prev/Next navigation on bugs work withMax Kanat-Alexander1-0/+4
2010-05-14Bug 561296: A fix allowing updating a field value's name when it isMax Kanat-Alexander1-0/+8
2010-04-22Bug 560009: Use firstidx from List::MoreUtils instead of lsearchMax Kanat-Alexander1-1/+1
2010-02-01Bug 537746: Search criteria headers on buglist duplicate unnecessarily when b...Frédéric Buclin1-3/+12
2010-01-12Bug 509030: "Changes older than" in Advanced Search is sometimes ignored - Pa...lpsolit%gmail.com1-1/+2
2009-11-09Bug 525734: Allow WebService clients to authenticate using Bugzilla_login and...mkanat%bugzilla.org1-0/+33
2009-10-24Bug 523495: Re-work attachment.cgi and the general attachment_base-checking c...mkanat%bugzilla.org1-9/+27
2009-10-09Bug 514913: Eliminate ssl="authenticated sessions"mkanat%bugzilla.org1-21/+22
2009-09-04Bug 224588: Unify ($^O =~ /MSWin/) checks (always use ON_WINDOWS)mkanat%bugzilla.org1-8/+7