summaryrefslogtreecommitdiffstats
path: root/template/en/default/global/user-error.html.tmpl
AgeCommit message (Collapse)AuthorFilesLines
2012-02-22Bug 725663 - (CVE-2012-0453) [SECURITY] CSRF vulnerability in the XML-RPC ↵Dave Lawrence1-0/+5
API when using mod_perl r/a=LpSolit
2012-01-31(CVE-2012-0440) [SECURITY] JSON-RPC permits to bypass token checks and can ↵Frédéric Buclin1-0/+5
lead to CSRF (no victim's action required) r=mkanat a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=718319
2012-01-31Bug 714472: (CVE-2012-0448) [SECURITY] utf8 homoglyphs are allowed in email ↵Frédéric Buclin1-3/+2
addresses, which could allow an attacker to be CC'ed to private bugs by accident r=glob a=LpSolit
2012-01-06Bug 714664: The content of the "emailregexpdesc" parameter is not escaped ↵Frédéric Buclin1-1/+1
when displayed to the user r=dkl a=LpSolit
2011-11-01Fix missing-space bugs in error messages. a=LpSolit.Gervase Markham1-1/+1
https://bugzilla.mozilla.org/show_bug.cgi?id=698737
2011-10-01Bug 582529: Ambiguous error message "You did not specify a file to attach" ↵Frédéric Buclin1-0/+4
when deleting an existing attachment filename a=LpSolit
2011-08-16Bug 678844: When trying to edit a non-existent classification, the error ↵Frédéric Buclin1-2/+4
message has missing words r=glob a=LpSolit
2011-08-10Bug 677187: If the attachment filename contains a newline, an error is ↵Frédéric Buclin1-2/+3
thrown when trying to download the attachment r/a=mkanat
2011-08-04Bug 637981: (CVE-2011-2379) [SECURITY] "Raw Unified" patch diffs can cause ↵Byron Jones1-0/+5
XSS on this domain in IE 6-8 and Safari r/a=LpSolit
2011-08-04Bug 653477: (CVE-2011-2380) [SECURITY] Group names can be guessed when ↵Frédéric Buclin1-20/+8
creating or editing a bug r=mkanat a=LpSolit
2011-08-01Bug 674574: When all components or versions are disabled, you cannot enter ↵Frédéric Buclin1-2/+2
bugs into the product but it's listed in enter_bug.cgi anyway r=dkl a=LpSolit
2011-07-26Bug 674089: Add a new hook 'end_object_name' in user-error.html.tmpl templateTiago Mello1-0/+1
r/a=mkanat
2011-07-26Bug 674117: Add a new hook 'auth_failure_object' in user-error.html.tmpl ↵Tiago Mello1-0/+2
template r/a=mkanat
2011-05-10Bug 28849: Block users from CCing other users if they do not have editbugs privsByron Jones1-0/+4
r=LpSolit, a=LpSolit
2011-05-06Bug 653341: Bug.create() fails to error out if an invalid group is passedFrédéric Buclin1-0/+7
r/a=mkanat
2011-04-29Bug 653406: fix escaping of url vars in error messagesByron Jones1-8/+8
r=LpSolit, a=LpSolit
2011-04-28Bug 423612 - Allow editing extern_id for users from the admin interfaceJochen Wiedmann1-0/+8
r=mkanat, a=mkanat
2011-03-03Bug 638489 - Make all boolean charts work with longdescs.isprivateMax Kanat-Alexander1-0/+4
r=mkanat, a=mkanat (module owner)
2011-02-16Bug 624522: Add support for SourceForge URLs in "see also"Tiago Mello1-0/+1
r/a=mkanat
2011-02-14Bug 621122: Add support for MantisBT URLs in "see also".Reed Loden1-0/+1
[r=timello a=mkanat]
2011-02-14Bug 543667: Add support for Trac URLs in "see also".Matt Selsky1-0/+1
2011-02-14Bug 558784: Add support for JIRA URLs in "see also".Matt Selsky1-0/+1
2011-01-30Bug 616185: Move tags (aka lists of bugs) to their own DB tablesFrédéric Buclin1-26/+7
r/a=mkanat
2011-01-07Bug 558803: Add a parameter to specify the password complexity for new passwordsrojanu1-0/+17
r/a=LpSolit
2010-12-13Bug 617477: Fix numerous consistency and behavior issues surroudning Bug.updateMax Kanat-Alexander1-4/+4
and Bugzilla::Bug. See https://bugzilla.mozilla.org/show_bug.cgi?id=617477#c2 for details. r=LpSolit, a=LpSolit
2010-12-04Bug 529974: Let users with local editcomponents privs manage flags for ↵Frédéric Buclin1-0/+25
products they can administer a=LpSolit (module owner)
2010-11-03Bug 419014: (CVE-2010-3764) [SECURITY] Old charts are not project specific, ↵Frédéric Buclin1-1/+1
and product names are viewable in graphs/ r=wurblzap a=LpSolit
2010-10-22Remove unused error tagFrédéric Buclin1-5/+0
https://bugzilla.mozilla.org/show_bug.cgi?id=523205
2010-10-22Bug 523205: editflagtypes.cgi should use Bugzilla::FlagType methods to ↵Frédéric Buclin1-3/+4
create and edit flag types a=LpSolit
2010-10-14Bug 575947: Users with passwords length less than 6 characters can't login ↵Frédéric Buclin1-0/+8
after migration from 3.4.x or older to 3.6 or newer r/a=mkanat
2010-09-19Add a missing "FILTER html" in the bug_url_invalid error message.Max Kanat-Alexander1-1/+1
https://bugzilla.mozilla.org/show_bug.cgi?id=577835
2010-09-19Bug 593170: Disallow urls like "show_bug.cgi?id=2323" (with no domain) inMax Kanat-Alexander1-0/+2
the See Also field. r=timello, a=mkanat
2010-09-19Bug 577835: Improve the error message displayed when you put an invalidMax Kanat-Alexander1-2/+8
Bug URL into the See Also field.
2010-09-08Bug 271758: noresolveonopenblockers = on doesn't allow removing open ↵Frédéric Buclin1-25/+10
blockers and resolve the bug in a single change r/a=mkanat
2010-09-02Fix bustage due to bug 549586Frédéric Buclin1-2/+2
2010-09-02Bug 549586: Allow the See Also field to take an integer or a localTiago Mello1-0/+4
bugzilla url and treat them as a link to the local Bugzilla. r/a=mkanat
2010-08-27Bug 479400: Add the ability to show or hide particular custom fieldsTiago Mello1-0/+5
based on multiple values of another field (visibility controllers) r/a=mkanat
2010-08-24Bug 589860: Remove sidebar.cgi, because remote XUL support is going away in ↵Frédéric Buclin1-4/+0
Gecko r/a=mkanat
2010-08-04Bug 450013: (CVE-2010-2757) [SECURITY] Can sudo a user without sending emailFrédéric Buclin1-0/+16
r=glob a=LpSolit
2010-07-25Bug 581693: Missing whitespace for the auth_failure_action hookFrédéric Buclin1-1/+1
r/a=mkanat
2010-07-23Bug 581326 – Misleading JSON error message.Marc Schumann1-2/+2
Patch by Marc Schumann <wurblzap@gmail.com>, r/a=mkanat
2010-07-23Bug 398701: Replace |FILTER url_quote| by |FILTER uri|Frédéric Buclin1-11/+11
r/a=mkanat
2010-07-18Bug 119703: Create an attachment by pasting it into a text fieldFrédéric Buclin1-12/+2
r/a=mkanat
2010-07-14The illegal_changed_in_x_days error message is no longer used.Max Kanat-Alexander1-5/+0
https://bugzilla.mozilla.org/show_bug.cgi?id=578323
2010-07-08Remove two errors that are no longer used, after the $$some_var refactorMax Kanat-Alexander1-10/+0
in Search.pm. https://bugzilla.mozilla.org/show_bug.cgi?id=574556
2010-07-08Fix a template and POD bustage from the $$some_var Search.pm checkin.Max Kanat-Alexander1-2/+2
https://bugzilla.mozilla.org/show_bug.cgi?id=574556
2010-07-08Bug 574556: Refactor Search.pm so that we're not doing $$some_var everywhere.Max Kanat-Alexander1-6/+16
Instead, we pass around a hashref and update the hashref. This patch also includes some cleanup for bugs surrounding percentage_complete, attachments.isobsolete, attachments.ispatch, and owner_idle_time. r=mkanat, a=mkanat
2010-07-08Bug 490930: Always store attachments locally if they are over X size (and ↵Frédéric Buclin1-14/+6
below some threshold!), don't ever display "Big File" checkbox r=mkanat a=LpSolit
2010-07-07Bug 519835: Remove Bugzilla::Product::check_product() in favor of ↵Frédéric Buclin1-13/+0
Bugzilla::Product->check() r=mkanat a=LpSolit
2010-06-25Bug 573173: Make Bugzilla::Bug's add_group and remove_group take groupMax Kanat-Alexander1-4/+4
names instead of ids r=dkl, a=mkanat