summaryrefslogtreecommitdiffstats
path: root/Bugzilla/Template.pm
AgeCommit message (Expand)AuthorFilesLines
2014-11-18Bug 1100368: css concatenation breaks data: urlsByron Jones1-1/+3
2014-11-04Bug 1093622: Backout bug 1090427 for causing: authenticated calls from bzapi ...Byron Jones1-5/+0
2014-11-04Bug 1090427: Backport bug 713926 to bmo/4.2 to protect against csrf for login...David Lawrence1-0/+5
2014-10-06merged with upstream 4.2David Lawrence1-1/+3
2014-10-06Bug 1054702: CSV export vulnerable to formulae injectionSimon Green1-1/+3
2014-09-25Bug 1072110: _concatenate_js assumes javascript_urls is an arrayByron Jones1-1/+2
2014-09-17Bug 1064395: concatenate and slightly minify javascript filesByron Jones1-1/+50
2014-07-07Bug 1033955: backport bug 1028795 to bmo (pre-load all related bugs during sh...Byron Jones1-4/+5
2014-05-27Bug 1014374: backport bug 977969 to bmo (concatenate and slightly minify css ...Byron Jones1-3/+3
2014-05-22add missing mod_perl fix for bug 977969Byron Jones1-0/+1
2014-05-22Bug 1014374: backport bug 977969 to bmo (concatenate and slightly minify css ...Byron Jones1-17/+79
2014-04-23merged with bugzilla/4.2Byron Jones1-14/+11
2014-04-18Bug 998323 - URLs pasted in comments are no longer displayedDavid Lawrence1-14/+11
2014-04-18merged with bugzilla/4.2David Lawrence1-0/+11
2014-04-17Bug 968576: [SECURITY] Dangerous control characters allowed in Bugzilla textManish Goregaokar1-0/+11
2014-03-04Bug 956230: improve instrumentation of bugzilla's internalsByron Jones1-1/+4
2014-01-29Bug 105865: bugzilla should pay attention to linebreaks when making bugnumber...Byron Jones1-6/+10
2013-11-19Bug 929345: bug history/activity shouldn't collapse multi-line values to a si...Byron Jones1-8/+0
2013-10-25Bug 921523 - backport upstream bug 917669 to bmo/4.2 to throw error when inva...Dave Lawrence1-4/+1
2013-10-23Bug 895687: add UserStory extensionByron Jones1-0/+8
2013-09-27Revert Bug 917669 - invalid or expired authentication tokens and cookies shou...Dave Lawrence1-1/+4
2013-09-26Bug 917669 - invalid or expired authentication tokens and cookies should thro...Dave Lawrence1-4/+1
2013-09-23Bug 919416: set STAT_TTL in template provider to > 1 secondByron Jones1-0/+4
2013-07-25Remove debugging lineDave Lawrence1-1/+0
2013-07-24Bug 895309 - comments returned via the REST endpoint shouldn't be wrappedDave Lawrence1-1/+3
2013-02-19Bug 842038: (CVE-2013-0785) [SECURITY] XSS in show_bug.cgi when using an inva...Frédéric Buclin1-0/+1
2013-02-19Bug 842038Byron Jones1-0/+1
2013-01-17Bug 830467 - Don't call _wanted_languages() when only one is availableDave Lawrence1-8/+3
2013-01-14merged with bugzilla/4.2Dave Lawrence1-1/+1
2013-01-14Bug 829709 - Do not load CSS files from all skins by defaultDave Lawrence1-36/+13
2013-01-14Bug 829939: Only build default_authorizer on requestFrédéric Buclin1-1/+1
2012-11-28Bug 814411: Add a caching mechanism to Bugzilla::Object to avoid querying the...Byron Jones1-3/+3
2012-11-26Bug 812543 - Back port patch from bug 797636 to bmo/4.2 to bring in performan...Dave Lawrence1-3/+2
2012-10-12Bug 799257 - Backport bug 795650 and bug 797833 to bmo/4.0 and bmo/4.2 for pe...Dave Lawrence1-0/+9
2012-08-07Revert commit 8283Dave Lawrence1-10/+0
2012-08-07Bug 778631: use a persistent Template::Provider to avoid recompiling template...Byron Jones1-0/+10
2012-08-01merged with bugzilla/4.2Dave Lawrence1-14/+18
2012-07-26Bug 777398: (CVE-2012-1968) [SECURITY] HTML bugmail exposes information about...Frédéric Buclin1-14/+18
2012-05-22merged with bugzilla/4.2Dave Lawrence1-1/+1
2012-05-17Bug 752751: Perl modules that start with a protocol (eg HTTP::Header) are not...Simon Green1-1/+1
2012-03-06Bug 732189 - Backport 731562 to bmo: Cache the global/user.html.tmpl template...Dave Lawrence1-1/+9
2012-01-12Bug 715467 - Inconsistency in patch option linksDave Lawrence1-1/+1
2011-10-05Some more 4.2 porting fixesDavid Lawrence1-0/+12
2011-10-05more porting workDavid Lawrence1-5/+8
2011-08-04Bug 657158 - (CVE-2011-2381) [SECURITY] Request email headers for attachment ...Reed Loden1-0/+3
2011-08-01Bug 634812: Having a very large number of custom fields can make displaying s...Frédéric Buclin1-0/+5
2011-07-25Bug 652663 - When using bug_format_comment hook some replacements can happen ...David Lawrence1-2/+4
2011-07-08Bug 670169 - Escape '>' in js filterReed Loden1-0/+1
2011-05-24Bug 659185: html_quote() escapes @ causing mailto links to not be processedFrédéric Buclin1-1/+2
2011-04-28Bug 423612 - Allow editing extern_id for users from the admin interfaceJochen Wiedmann1-0/+1