summaryrefslogtreecommitdiffstats
path: root/buglist.cgi
AgeCommit message (Collapse)AuthorFilesLines
2015-09-09Bug 1202147 - Performing a Simple Search results in the message "invalid ↵Byron Jones1-9/+9
column names: relevance desc"
2015-07-24Bug 1184828: backport bug 1161070 to bmo (api searches should honour the ↵David Lawrence1-23/+12
same fields in its "order" parameter as the web UI)
2014-10-06merged with upstream 4.2David Lawrence1-1/+1
2014-10-06Bug 1075578: [SECURITY] Improper filtering of CGI argumentsFrédéric Buclin1-1/+1
r=dkl,a=sgreen
2014-07-21Bug 1041559: "Please wait while your bugs are retrieved" shown above menu ↵Byron Jones1-20/+1
header for search error pages
2014-03-04Bug 966180: backport bug 956233 to bmo (enable USE_MEMCACHE on most objects)Byron Jones1-0/+1
2013-12-05Bug 943636: SQL error in quicksearch API when providing just a bug IDByron Jones1-51/+37
2013-10-16Bug 926109: Error when searching for many columns at once (MariaDB can only ↵Byron Jones1-10/+1
use 61 tables in a join)
2013-10-13Bug 926109 - Bugzilla has suffered an internal error while retrieving many ↵Dave Lawrence1-1/+10
columns at once
2013-10-11merged with bugzilla/4.2Dave Lawrence1-1/+1
2013-09-27Bug 914262: KHTML-based browsers such as Konqueror do not support the ↵Frédéric Buclin1-1/+1
Server-Push technology r=dkl a=justdave
2013-08-12merged with bugzilla/4.2Dave Lawrence1-1/+1
2013-08-12Bug 894878 - CSV output template for request queues has gone awayDave Lawrence1-20/+10
r=glob
2013-08-09Bug 902515: Internet Explorer 11 receives multipart/x-mixed-replace content ↵Frédéric Buclin1-1/+1
from buglist.cgi r=dkl a=sgreen
2013-06-12Bug 882059: fix "use of uninitialized value" warnings, and ignore some ↵Byron Jones1-7/+9
errors/warnings
2013-02-27Bug 836067 - backport bug 819432 to BMO 4.2 to improve search performanceDave Lawrence1-24/+23
2013-02-26Reverted Bug 836067 due to buglist crashing and do not yet know the reasonDave Lawrence1-23/+24
2013-02-26Bug 836067 - backport bug 819432 to BMO 4.2 to improve search performanceDave Lawrence1-24/+23
2013-02-19Bug 824399: (CVE-2013-0786) [SECURITY] build_subselect() leaks the existence ↵Simon Green1-1/+4
of products and components you cannot access r/a=LpSolit
2013-02-19Bug 824399Byron Jones1-1/+4
2012-10-09merged with bugzilla/4.2Dave Lawrence1-1/+0
2012-09-17Bug 761046: Don't redirect when hitting buglist.cgi directly to avoid ↵Byron Jones1-1/+0
duplicate cgi->header calls r=LpSolit, a=LpSolit
2012-08-31Merge from bugzilla/4.2Reed Loden1-1/+3
2012-08-29Bug 786310: Remove tokens when saving the default queryByron Jones1-0/+2
r= LpSolit, a=LpSolit
2012-08-28Bug 772953: Remove the token from buglist urlsByron Jones1-1/+2
r=dkl, a=LpSolit
2012-08-20Bug 698068: The "There is no saved search named ..." page has a "forget" linkFrédéric Buclin1-1/+1
r=glob a=LpSolit
2012-07-26merged with bugzilla/4.2Dave Lawrence1-1/+3
2012-07-17Bug 772953: buglist urls should not contain a tokenByron Jones1-1/+2
2012-06-27Bug 768870: The "Un-forget the search" link has no tokenFrédéric Buclin1-1/+3
r=glob a=LpSolit
2012-06-05merged with bugzilla/4.2Dave Lawrence1-0/+2
2012-05-29Bug 754672 - CSRF vulnerability in buglist.cgi allows possible unauthorized ↵Reed Loden1-0/+2
setting of default search options [r=LpSolit a=LpSolit]
2012-05-01merged with bugzilla/4.2Dave Lawrence1-14/+9
2012-04-18Bug 745397: (CVE-2012-0466) [SECURITY] The JS template for buglists permits ↵Frédéric Buclin1-10/+0
attackers to access all bugs that the victim can see r=glob a=LpSolit
2012-04-17Bug 745320: Shared queries do not work when tags are part of the queryFrédéric Buclin1-4/+9
r=dkl a=LpSolit
2012-03-22Bug 732440: add sql timings to buglist.cgi's debug outputByron Jones1-0/+3
2011-12-09Bug 644281: When the sort order of a buglist is modified, the "Show next bug ↵Frédéric Buclin1-18/+13
in my list" user pref still uses the original sort order to decide which bug to display next r=glob a=LpSolit
2011-11-26Bug 255606: Do not let buglist.cgi return all bugs by defaultFrédéric Buclin1-1/+1
r/a=mkanat
2011-08-17Bug 678357: Fix 'limit' parameter in the saved searches resultsTiago Mello1-1/+1
r/a=mkanat
2011-05-31Bug 647649: Change the old "Boolean Charts" UI into the new AND/ORMax Kanat-Alexander1-13/+0
"Custom Search" UI. r=timello, a=mkanat
2011-03-02Bug 632718: Only return 500 search results unless the user specificallyMax Kanat-Alexander1-0/+11
requests to see more. r=dkl, a=mkanat
2011-02-14Bug 480044: Use dashes instead of colons to separate bug IDs in the BUGLIST ↵Frédéric Buclin1-1/+1
cookie, because colons are HTML-escaped, making the cookie bigger than the 4k limit r=mkanat a=LpSolit
2011-02-14Bug 417551: Make it possible for CSV headers to be the field descriptionMichael J Tosh1-0/+4
instead of the field name, and have the buglist.cgi link give you CSV like this by default. r=mkanat, a=mkanat
2011-02-12Bug 535571: Allow Search.pm to accept "limit" and "offset" as parameters.Max Kanat-Alexander1-12/+4
r=mkanat, a=mkanat (module owner)
2011-01-30Bug 616185: Move tags (aka lists of bugs) to their own DB tablesFrédéric Buclin1-90/+35
r/a=mkanat
2011-01-07Bug 621090 - [SECURITY] Adding saved searches lacks CSRF protectionDavid Lawrence1-0/+2
r/a=mkanat
2010-12-27Bug 615574: Make every search done by buglist.cgi create a list_id, so thatMax Kanat-Alexander1-23/+1
even Saved Searches get "last list" support. r=LpSolit, a=LpSolit
2010-08-31Bug 77193 - Add the ability to retire (disable) old versions, components and ↵Dave Lawrence1-4/+4
milestones r/a=mkanat
2010-08-02Bug 581622: When a quicksearch includes the "content" field, it is limited ↵Frédéric Buclin1-1/+0
to 200 bugs r/a=mkanat
2010-07-16Bug 398308: Make Search.pm take a hashref for its "params" argumentMax Kanat-Alexander1-1/+1
instead of taking a CGI object. r=mkanat, a=mkanat (module owner)
2010-07-15Bug 577800: Finish the cleanup of Search.pm's "init" function by removingMax Kanat-Alexander1-1/+1
it and having its work be done by a new "sql" accessor instead. Also adds some comments, moves functions around into sections, and creates a new _user accessor. r=mkanat, a=mkanat (module owner)