| Age | Commit message (Collapse) | Author | Files | Lines | |
|---|---|---|---|---|---|
| 2018-02-16 | Bug 1433400 (CVE-2018-5123) Prevent cross-site image requests from leaking ↵ | Dylan William Hardison | 1 | -0/+1 | |
| contents of certain fields due to regex search | |||||
| 2017-12-16 | Bug 1403777 - Migrate urlbase from params to localconfig | Dylan William Hardison | 1 | -4/+4 | |
| 2017-07-07 | Bug 1377933 - Remove trailing whitespace from all perl files | Dylan William Hardison | 1 | -23/+23 | |
| 2017-01-26 | Bug 1334158 - Lightbox images CSP error on bug modal | Dylan William Hardison | 1 | -3/+3 | |
| 2017-01-25 | Bug 1286290 - CSP compliant bug modal | Dylan William Hardison | 1 | -2/+26 | |
| 2016-10-03 | Bug 1297243 - JSON bugzilla attachment reports charset='' (two apostrophes, ↵ | Dylan William Hardison | 1 | -1/+1 | |
| which is an invalid parameter value) and can't be loaded. | |||||
| 2016-09-13 | Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to bmo/master + ↵ | Dylan William Hardison | 1 | -35/+9 | |
| local symlink to data/ directory | |||||
| 2016-09-12 | Revert "Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to ↵ | Dylan William Hardison | 1 | -9/+35 | |
| bmo/master + local symlink to data/ directory" This reverts commit e6bf4cacb10f86077fe898349485f5c7ab9fb4b6. | |||||
| 2016-09-12 | Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to bmo/master + ↵ | Dylan William Hardison | 1 | -35/+9 | |
| local symlink to data/ directory | |||||
| 2016-07-13 | Bug 1285835 - BMO sending bogus Content-Disposition filenames when the ↵ | Dylan Hardison | 1 | -15/+20 | |
| filename is not ASCII | |||||
| 2016-06-27 | Bug 1276820 - bmoattachments.org sends malformed content-type header | David Lawrence | 1 | -3/+6 | |
| 2015-10-16 | Bug 1196626 - log all authenticated requests | Dylan William Hardison | 1 | -0/+4 | |
| 2015-08-19 | Bug 1195544 - Information Disclosure Vulnerability Permits Attacker Obtains ↵ | Byron Jones | 1 | -0/+2 | |
| The GitHub OAUTH Return Code | |||||
| 2015-07-21 | Bug 1175985 - Bugzilla Sensitive Information Disclosure Vulnerability | Dylan William Hardison | 1 | -1/+17 | |
| 2015-07-21 | Bug 1180572 - create attachment_storage parameter | Byron Jones | 1 | -4/+1 | |
| 2015-04-01 | remove debugging code | Byron Jones | 1 | -1/+0 | |
| 2015-03-30 | Bug 1125987: asking for review in a restricted bug doesn't work as expected ↵ | Byron Jones | 1 | -1/+1 | |
| ("You must provide a reviewer for review requests" instead of "That user cannot access that bug" error) | |||||
| 2015-03-24 | Bug 1096798: prototype modal show_bug view | Byron Jones | 1 | -0/+1 | |
| 2014-10-16 | Bug 1082887: comments made when setting a flag from the attachment details ↵ | Byron Jones | 1 | -4/+9 | |
| page are not included in the "flag updated" email | |||||
| 2014-10-06 | merged with upstream 4.2 | David Lawrence | 1 | -12/+11 | |
| 2014-10-06 | Bug 1075578: [SECURITY] Improper filtering of CGI arguments | Frédéric Buclin | 1 | -4/+6 | |
| r=dkl,a=sgreen | |||||
| 2014-04-02 | Bug 986590: Confusing error message when not finding reviewer | Byron Jones | 1 | -0/+2 | |
| 2014-03-31 | Bug 989650 - backport bug 294021 to bmo/4.2 to allow requestees to set ↵ | David Lawrence | 1 | -3/+27 | |
| attachment flags even if they don't have editbugs privs r=glob | |||||
| 2014-01-07 | Bug 956052 - backport upstream bug 945535 to bmo/4.2 for performance ↵ | Dave Lawrence | 1 | -3/+2 | |
| improvement in bugs with large number of attachments | |||||
| 2013-10-17 | merged with bugzilla/4.2 | Dave Lawrence | 1 | -8/+11 | |
| 2013-10-16 | Bug 913904: (CVE-2013-1734) [SECURITY] CSRF when updating attachments | Frédéric Buclin | 1 | -8/+11 | |
| r=dkl a=sgreen | |||||
| 2013-10-15 | Bug 916906: attaching a file which just contains a github url should ↵ | Byron Jones | 1 | -0/+4 | |
| automatically redirect to it when viewing | |||||
| 2013-07-16 | Bug 888939: patches created by pasting the attachment content should use ↵ | Byron Jones | 1 | -3/+13 | |
| unix line endings | |||||
| 2012-11-28 | Bug 814411: Add a caching mechanism to Bugzilla::Object to avoid querying ↵ | Byron Jones | 1 | -3/+3 | |
| the database repeatedly for the same information | |||||
| 2012-10-23 | Bug 803600: Operators email address is exposed to anons on attachment deletion | Frédéric Buclin | 1 | -1/+0 | |
| 2012-09-09 | Merge from bugzilla/4.2 | Reed Loden | 1 | -2/+1 | |
| 2012-09-09 | Bug 671612: Send "X-Content-Type-Options: nosniff" with every response | Matt Selsky | 1 | -2/+1 | |
| r/a=LpSolit | |||||
| 2012-07-24 | Bug 771107 - List of attachments in attachment details screen does not ↵ | Dave Lawrence | 1 | -2/+0 | |
| distinguish obsolete attachments r=glob, a=LpSolit | |||||
| 2011-11-22 | merged with bmo/4.2 | Dave Lawrence | 1 | -28/+5 | |
| 2011-11-21 | Bug 703983 - CSRF vulnerability in attachment.cgi allows possible ↵ | Reed Loden | 1 | -28/+5 | |
| unauthorized attachment creation [r=LpSolit a=LpSolit] | |||||
| 2011-10-05 | more porting work | David Lawrence | 1 | -1/+8 | |
| 2011-08-04 | Bug 637981: (CVE-2011-2379) [SECURITY] "Raw Unified" patch diffs can cause ↵ | Byron Jones | 1 | -30/+99 | |
| XSS on this domain in IE 6-8 and Safari r/a=LpSolit | |||||
| 2011-04-28 | Bug 653404: Misleading error message when file to be attached is not ↵ | Frédéric Buclin | 1 | -1/+4 | |
| readable by browser r/a=LpSolit | |||||
| 2011-03-09 | Bug 633776: Automatic charset detection for text attachments | Byron Jones | 1 | -1/+7 | |
| r=mkanat, a=mkanat | |||||
| 2010-10-26 | Bug 607361: Creating an attachment without a "comment" param in the URL ↵ | Frédéric Buclin | 1 | -1/+2 | |
| causes an internal error a=LpSolit | |||||
| 2010-10-03 | Bug 414509: offer View All (non obsolete) attachments | Guy Pyrzak | 1 | -0/+5 | |
| r=LpSolit, a=LpSolit | |||||
| 2010-08-04 | Bug 584110: Don't name attachment files "attachment.txt" by default, because ↵ | Frédéric Buclin | 1 | -1/+1 | |
| this confuses IE a=LpSolit | |||||
| 2010-08-03 | Bug 453425 - Send "X-Content-Type-Options: nosniff" header when displaying ↵ | Reed Loden | 1 | -1/+2 | |
| attachments so IE8 doesn't try to sniff the content type. [r=LpSolit a=LpSolit] | |||||
| 2010-07-18 | Bug 119703: Create an attachment by pasting it into a text field | Frédéric Buclin | 1 | -3/+2 | |
| r/a=mkanat | |||||
| 2010-07-08 | Bug 490930: Always store attachments locally if they are over X size (and ↵ | Frédéric Buclin | 1 | -1/+0 | |
| below some threshold!), don't ever display "Big File" checkbox r=mkanat a=LpSolit | |||||
| 2010-06-03 | Bug 567846: Modify set_status, set_resolution, and set_dup_id to use | Max Kanat-Alexander | 1 | -1/+1 | |
| VALIDATOR_DEPENDENCIES, so that they don't need custom code in set_all. | |||||
| 2010-05-20 | Bug 565879: Merge ThrowCodeError("action_unrecognized"), ↵ | Frédéric Buclin | 1 | -1/+1 | |
| ThrowUserError("no_valid_action") and ThrowCodeError("unknown_action") r=ghendricks a=LpSolit | |||||
| 2010-05-17 | Bug 560281: Do not display deleted attachments in "View All" | Frédéric Buclin | 1 | -0/+2 | |
| a=LpSolit | |||||
| 2010-05-07 | Bug 395451 - "Bugzilla::BugMail needs to use Bug objects internally instead ↵ | Reed Loden | 1 | -3/+3 | |
| of direct SQL" [r=mkanat a=mkanat] | |||||
| 2010-04-22 | Bug 560009: Use firstidx from List::MoreUtils instead of lsearch | Max Kanat-Alexander | 1 | -4/+2 | |
| r=timello, a=mkanat | |||||
 |
index : bugzilla | |
| Bugzilla | Florian Pritz |
| summaryrefslogtreecommitdiffstats |
path: root/attachment.cgi