Age | Commit message (Collapse) | Author | Files | Lines |
|
onload="element.focus()"
r/a=justdave
|
|
r/a=justdave
|
|
specific Bugzilla installation
r=dkl,a=justdave
|
|
r/a=justdave
|
|
r/a=justdave
|
|
r/a=justdave
|
|
r/a=justdave
|
|
r/a=justdave
|
|
CSS styles
r/a=justdave
|
|
r=dkl, a=simon
|
|
not passed any parameters\nr=simon, a=glob
|
|
r=simon, a=sgreen
|
|
checkbox if the CC list is empty
r=simon, a=glob
|
|
r=dkl, a=LpSolit
|
|
r=justdave a=LpSolit
|
|
attachments
r/a=LpSolit
|
|
distinguish obsolete attachments
r=glob, a=LpSolit
|
|
editing an attachment
r/a=LpSolit
|
|
r/a=LpSolit
|
|
r=dkl a=LpSolit
|
|
r/a=LpSolit
|
|
r=dkl a=LpSolit
|
|
[r=glob a=LpSolit]
|
|
add it to files which miss one
r=kiko r=mkanat r=mrbball a=LpSolit
|
|
maxlocalattachment > 0), the link to attach files to bugs is not displayed
r/a=LpSolit
|
|
token checks
r=dkl a=LpSolit
|
|
unauthorized attachment creation
[r=LpSolit a=LpSolit]
|
|
r/a=mkanat
|
|
r=LpSolit, a=LpSolit
|
|
being mandatory
r/a=LpSolit
|
|
attachment details page
r/a=mkanat
|
|
detail view
r=pyrzak, r=mkanat, a=mkanat
|
|
attachment/edit.html.tmpl
r/a=mkanat
|
|
for javascript: or data: URLs in the URL field can be evaded with prefixed whitespace
and
Bug 628034: (CVE-2011-0048) [SECURITY] For not-logged-in users, the URL field doesn't safeguard against javascript: or data: URLs
r=dkl a=LpSolit
|
|
[r=reed a=LpSolit]
|
|
r/a=LpSolit
|
|
a=LpSolit (module owner)
|
|
trying to add attachments on an existing bug and the user previously clicked "Hide Advanced Fields" in enter_bug.cgi
a=LpSolit (module owner)
|
|
attachment with JS disabled
r=LpSolit r=mkanat a=LpSolit
|
|
r=glob, a=mkanat
|
|
r=timello a=LpSolit
|
|
r=LpSolit, a=LpSolit
|
|
<script src> and <link href> tags in Bugzilla
r=glob, a=mkanat
|
|
r=mkanat, a=mkanat
|
|
r/a=mkanat
|
|
behavior) if there is only an URL in them
r/a=LpSolit
|
|
r/a=mkanat
|
|
below some threshold!), don't ever display "Big File" checkbox
r=mkanat a=LpSolit
|
|
r=mkanat a=LpSolit
|
|
requestees"
[r=LpSolit a=LpSolit]
|