summaryrefslogtreecommitdiffstats
path: root/attachment.cgi
AgeCommit message (Expand)AuthorFilesLines
2014-10-06Bug 1075578: [SECURITY] Improper filtering of CGI argumentsFrédéric Buclin1-4/+6
2014-08-13Bug 996893: Perl 5.18 and newer throw tons of warnings about deprecated modulesFrédéric Buclin1-1/+3
2014-03-21Bug 294021: Allow requestees to set attachment flags even if they don't have ...Frédéric Buclin1-3/+25
2013-10-16Bug 913904: (CVE-2013-1734) [SECURITY] CSRF when updating attachmentsFrédéric Buclin1-7/+10
2012-11-22Bug 811280: Adds a caching mechanism to Bugzilla::Object to avoid querying th...Byron Jones1-3/+3
2012-10-19Bug 803600: Clean up the comment generated when deleting attachmentsFrédéric Buclin1-1/+0
2012-09-01Bug 787529: Use |use 5.10.1| everywhereFrédéric Buclin1-12/+1
2012-07-24Bug 771107 - List of attachments in attachment details screen does not distin...Dave Lawrence1-2/+0
2012-06-26Bug 138546: Add a checkbox to add himself to the CC list when creating or edi...Reed Loden1-0/+4
2012-05-29Bug 671612: Send "X-Content-Type-Options: nosniff" with every responseMatt Selsky1-2/+1
2012-03-062nd part of bug 731559: fix get_attachments_by_bug() everywhereFrédéric Buclin1-3/+2
2012-01-11Bug 680131: Replace the MPL 1.1 license by the MPL 2.0 one in all files, and ...Frédéric Buclin1-28/+5
2011-12-14Bug 169752: Activity log should fuse data fields split because they didn't fitFrédéric Buclin1-2/+1
2011-12-08Bug 684225: The removal of locally stored attachments should be done from Bug...c1541@hotmail.com1-4/+0
2011-11-21Bug 703983 - CSRF vulnerability in attachment.cgi allows possible unauthorize...Reed Loden1-28/+5
2011-09-02Bug 682822: Hide 'obsolete attachments' section when there are none to displayByron Jones1-30/+41
2011-08-04Bug 637981: (CVE-2011-2379) [SECURITY] "Raw Unified" patch diffs can cause XS...Byron Jones1-30/+99
2011-04-28Bug 653404: Misleading error message when file to be attached is not readable...Frédéric Buclin1-1/+4
2011-03-09Bug 633776: Automatic charset detection for text attachmentsByron Jones1-1/+7
2010-10-26Bug 607361: Creating an attachment without a "comment" param in the URL cause...Frédéric Buclin1-1/+2
2010-10-03Bug 414509: offer View All (non obsolete) attachmentsGuy Pyrzak1-0/+5
2010-08-04Bug 584110: Don't name attachment files "attachment.txt" by default, because ...Frédéric Buclin1-1/+1
2010-08-03Bug 453425 - Send "X-Content-Type-Options: nosniff" header when displaying at...Reed Loden1-1/+2
2010-07-18Bug 119703: Create an attachment by pasting it into a text fieldFrédéric Buclin1-3/+2
2010-07-08Bug 490930: Always store attachments locally if they are over X size (and bel...Frédéric Buclin1-1/+0
2010-06-03Bug 567846: Modify set_status, set_resolution, and set_dup_id to useMax Kanat-Alexander1-1/+1
2010-05-20Bug 565879: Merge ThrowCodeError("action_unrecognized"), ThrowUserError("no_v...Frédéric Buclin1-1/+1
2010-05-17Bug 560281: Do not display deleted attachments in "View All"Frédéric Buclin1-0/+2
2010-05-07Bug 395451 - "Bugzilla::BugMail needs to use Bug objects internally instead o...Reed Loden1-3/+3
2010-04-22Bug 560009: Use firstidx from List::MoreUtils instead of lsearchMax Kanat-Alexander1-4/+2
2010-04-06Bug 556429: Stop sending bugmail from inside the templateMax Kanat-Alexander1-4/+9
2010-03-28Bug 365926: Serve attachments without an explicit charset, and let the browserMax Kanat-Alexander1-0/+8
2009-12-30Bug 532518: Credentials are not checked correctly when viewing one attachment...lpsolit%gmail.com1-21/+28
2009-12-18Bug 162060: Remove the relationship between "votestoconfirm" and whether or n...mkanat%bugzilla.org1-1/+2
2009-12-13Bug 526734: Allow localization of the "From update of attachment" string in c...mkanat%bugzilla.org1-7/+5
2009-12-04Bug 452919: Allow the "created an attachment" message in comments to be local...mkanat%bugzilla.org1-5/+4
2009-10-24Bug 523495: Re-work attachment.cgi and the general attachment_base-checking c...mkanat%bugzilla.org1-11/+12
2009-10-01Bug 509053: Implement Bugzilla->feature (feature_enabled in the templates), a...mkanat%bugzilla.org1-6/+0
2009-09-30Bug 328628: When attachments have UTF-8 characters in their name, they will n...mkanat%bugzilla.org1-0/+7
2009-09-28Bug 140999: Users without edit permissions for an attachment should still be ...lpsolit%gmail.com1-37/+45
2009-08-11Bug 509045: Make "use_keywords" a global template variable instead of having ...mkanat%bugzilla.org1-3/+0
2009-08-06Bug 305993: The requestee field may be omitted even when a requestee is alrea...lpsolit%gmail.com1-2/+8
2009-08-05Bug 415541: Implement $bug->set_flags() and $attachment->set_flags() - Patch ...lpsolit%gmail.com1-34/+15
2009-04-15Bug 486685: MIME type override for attachments lost in HTTP redirect - Patch ...lpsolit%gmail.com1-0/+4
2009-04-09Bug 454251: Implement Bugzilla::Attachment->create() and $attachment->update(...lpsolit%gmail.com1-148/+85
2009-03-31Bug 477420 - "Rename some of the token names used in attachment.cgi" [p=reed ...reed%reedloden.com1-6/+6
2009-03-30Bug 476603 - "[SECURITY] Editing attachments doesn't have any CSRF protection...reed%reedloden.com1-0/+9
2009-02-02Bug 472206: [SECURITY] Bugzilla should optionally not allow the user to view ...lpsolit%gmail.com1-1/+3
2009-02-02Bug 38862: [SECURITY] attachments should be at a different hostname - Patch b...lpsolit%gmail.com1-9/+95
2008-12-17Bug 467171: Editing attachments doesn't update the Last-Modified bug timestam...lpsolit%gmail.com1-0/+13