Age | Commit message (Expand) | Author | Files | Lines |
2015-11-10 | Bug 1221423 - unable to impersonate users when 2fa is enabled | David Lawrence | 1 | -25/+40 |
2015-04-24 | Bug 1157395: CSRF in log in form | David Lawrence | 1 | -1/+17 |
2014-11-04 | Bug 1093622: Backout bug 1090427 for causing: authenticated calls from bzapi ... | Byron Jones | 1 | -13/+0 |
2014-11-04 | Bug 1090427: Backport bug 713926 to bmo/4.2 to protect against csrf for login... | David Lawrence | 1 | -0/+13 |
2014-10-06 | merged with upstream 4.2 | David Lawrence | 1 | -17/+14 |
2014-10-06 | Bug 1075578: [SECURITY] Improper filtering of CGI arguments | Frédéric Buclin | 1 | -17/+14 |
2014-02-17 | Bug 966676: The 'sudo' cookie should not be accessible from JavaScript | Frédéric Buclin | 1 | -3/+10 |
2011-07-25 | Bug 589128: Adds a preference allowing users to choose between text or html | Byron Jones | 1 | -1/+1 |
2011-07-18 | Bug 670128: Missing explicit exit after calls to $cgi->redirect(), making the... | Frédéric Buclin | 1 | -0/+1 |
2010-09-07 | Bug 593881: Assignment to $[ has been deprecated in Perl 5.12.0 | Frédéric Buclin | 1 | -1/+1 |
2010-08-04 | Bug 450013: (CVE-2010-2757) [SECURITY] Can sudo a user without sending email | Frédéric Buclin | 1 | -2/+6 |
2010-05-20 | Bug 565879: Merge ThrowCodeError("action_unrecognized"), ThrowUserError("no_v... | Frédéric Buclin | 1 | -1/+1 |
2010-03-01 | Bug 508823: Make it so that you don't ever have to reset template_inner (like | Max Kanat-Alexander | 1 | -1/+0 |
2009-04-15 | Bug 480862: relogin.cgi now just throws an error by default (should redirect ... | lpsolit%gmail.com | 1 | -2/+6 |
2009-03-02 | Bug 121601: Have logout display index.cgi, not just a message on relogin.cgi. | mkanat%bugzilla.org | 1 | -15/+1 |
2008-04-03 | Bug 405946: Some emails are not sent in the language chosen by the addressee ... | lpsolit%gmail.com | 1 | -4/+4 |
2007-10-19 | Bug 399954: Make Bugzilla able to hold its dependencies in a local directory | mkanat%bugzilla.org | 1 | -1/+1 |
2006-10-15 | Bug 281181: [SECURITY] It's way too easy to delete versions/components/milest... | lpsolit%gmail.com | 1 | -2/+2 |
2006-08-11 | Bug 347291: Make Bugzilla::User use Bugzilla::Object | mkanat%bugzilla.org | 1 | -1/+1 |
2006-06-21 | Bug 282121: Remove globals.pl from scripts that no longer use it - Patch by F... | lpsolit%gmail.com | 1 | -2/+0 |
2006-06-02 | Bug 339862: Move Bugzilla::BugMail::MessageToMTA() in a separate module - Pat... | lpsolit%gmail.com | 1 | -2/+2 |
2006-05-12 | Bug 300410: Bugzilla::Auth needs to be restructured to not require a BEGIN block | mkanat%bugzilla.org | 1 | -3/+2 |
2006-04-07 | Bug 332906: Wrong parameters passed to sudo sessions when trying to bypass va... | lpsolit%gmail.com | 1 | -2/+2 |
2006-02-24 | Patch for bug 328379: Fix spelling: 'visitng' -> 'visiting' in relogin.cgi; r... | jocuri%softhome.net | 1 | -1/+1 |
2005-11-22 | Bug 315524: When an invalid action is passed to relogin.cgi, ThrowTemplateErr... | lpsolit%gmail.com | 1 | -0/+5 |
2005-11-20 | Bug 312441: relogin.cgi allows you to impersonate user accounts you are not a... | karl%kornel.name | 1 | -93/+62 |
2005-11-05 | Bug 312439: The user being impersonated has "moral" rights to keep informed -... | karl%kornel.name | 1 | -7/+24 |
2005-10-24 | Bug 312307: Misused Throw*Error tags in code and templates - Patch by Dennis ... | lpsolit%gmail.com | 1 | -1/+1 |
2005-10-14 | Bug 204498 Add su (setuser) function | bugreport%peshkin.net | 1 | -12/+186 |
2005-08-13 | Bug 302644: relogin.cgi may ask you to login... before logging you out - Patc... | lpsolit%gmail.com | 1 | -1/+2 |
2005-08-10 | Bug 301508: Remove CGI.pl - Patch by Frédéric Buclin <LpSolit@gmail.com> r=... | lpsolit%gmail.com | 1 | -4/+4 |
2004-03-27 | Fix for bug 234175: Remove deprecated ConnectToDatabase() and | kiko%async.com.br | 1 | -4/+2 |
2003-11-27 | Bug 226324: Move relogin.cgi code to Bugzilla::Auth::CGI. Provide a | kiko%async.com.br | 1 | -25/+3 |
2003-06-03 | Bug 180635 - Enhance Bugzilla::User to store additional information | bbaetz%acm.org | 1 | -1/+3 |
2003-05-05 | Bug 201816 - use CGI.pm for header output | bbaetz%acm.org | 1 | -6/+8 |
2003-03-27 | Bug 196433 - Bugzilla now uses /usr/bin/perl as the shebang line | jake%bugzilla.org | 1 | -1/+1 |
2002-08-26 | Bug 76923 - Don't |use diagnostics| (its really expensive at startup time) | bbaetz%student.usyd.edu.au | 1 | -1/+0 |
2002-07-27 | Bug 158658 - relogin.cgi should use a template. This also adds the ability to... | gerv%gerv.net | 1 | -12/+6 |
2002-05-08 | Bug 140437 - clean up parameters. Patch by gerv; 2xr=justdave. | gerv%gerv.net | 1 | -2/+0 |
2002-05-08 | Bug 140435 - Templatise GetCommandMenu. Patch by gerv; r=bbaetz, justdave. | gerv%gerv.net | 1 | -0/+1 |
2002-04-24 | Bug 138588 - change to use new template structure. Patch by gerv, r=myk, afra... | gerv%gerv.net | 1 | -2/+1 |
2002-02-24 | Bug 126791 - templatise relogin.cgi | gerv%gerv.net | 1 | -11/+14 |
2002-02-04 | Bug 95732 - remove logincookies.cryptpassword, and invalidate cookies from | bbaetz%student.usyd.edu.au | 1 | -0/+19 |
2002-01-20 | Fix for bug 108982: enable taint mode for all user-facing CGI files. | justdave%syndicomm.com | 1 | -1/+3 |
2002-01-19 | Fix for bug 120817 - Log Out and %commandmenu% in bannerhtml, r=justdave,dkl | dkl%redhat.com | 1 | -2/+5 |
2001-10-13 | Fix for bug 19910: Bugzilla installs on the same server would interfere with ... | justdave%syndicomm.com | 1 | -4/+3 |
2000-01-18 | Footer wasn't displaying new state after clicking "log out". | terry%mozilla.org | 1 | -0/+4 |
2000-01-15 | Patch by Ramon Felciano <felciano@ingenuity.com>, with many tweaks by | terry%mozilla.org | 1 | -1/+1 |
1999-11-02 | updated license boilerplate | dmose%mozilla.org | 1 | -14/+15 |
1999-09-24 | Patch by holger@holger.om.org (Holger Schurig) -- put the fancy header on sev... | terry%mozilla.org | 1 | -1/+4 |