Age | Commit message (Collapse) | Author | Files | Lines |
|
|
|
lead to CSRF (no victim's action required)
r=mkanat a=LpSolit
https://bugzilla.mozilla.org/show_bug.cgi?id=718319
|
|
addresses, which could allow an attacker to be CC'ed to private bugs by accident
r=glob a=LpSolit
|
|
|
|
r/a=LpSolit
|
|
|
|
r=timello, a=LpSolit
|
|
|
|
|
|
|
|
reply text to the new comment box
r/a=LpSolit
|
|
|
|
r/a=LpSolit
|
|
r=glob
|
|
r=glob
|
|
maxlocalattachment > 0), the link to attach files to bugs is not displayed
r/a=LpSolit
|
|
|
|
and requestee as expected
r=timello, a=LpSolit
|
|
in localconfig, the message should be red
r=timello a=LpSolit
|
|
|
|
token checks
r=dkl a=LpSolit
|
|
https://bugzilla.mozilla.org/show_bug.cgi?id=715477
|
|
|
|
|
|
|
|
r/a=LpSolit
|
|
prefs tab
r=timello a=LpSolit
|
|
when displayed to the user
r=dkl a=LpSolit
|
|
|
|
https://bugzilla.mozilla.org/show_bug.cgi?id=713346
|
|
r=mkanat a=LpSolit
|
|
r=wicked a=LpSolit
|
|
|
|
r=LpSolit
|
|
|
|
unauthorized account creation e-mail request
[r=mkanat a=mkanat]
|
|
|
|
|
|
|
|
|
|
description (confusingly links to actual URL)
r/a=mkanat
|
|
workflow of editing fields
|
|
|
|
|
|
r/a=mkanat
|
|
r=mkanat, a=mkanat
|
|
|
|
bug creation
|
|
updates.bugzilla.org is unavailable
r=glob a=LpSolit
|
|
r/a=mkanat
|