summaryrefslogtreecommitdiffstats
path: root/template
AgeCommit message (Expand)AuthorFilesLines
2012-04-18Bug 745397: (CVE-2012-0466) [SECURITY] The JS template for buglists permits a...Frédéric Buclin1-37/+0
2012-04-17Bug 741078: Update relnotes for 4.2.1Frédéric Buclin1-3/+6
2012-04-17Bug 745197: Add a hook in Bugzilla::Error::_throw_error() so that extensions ...Frédéric Buclin1-4/+2
2012-04-15Comment toggling text is not localizable because it's in a .js file.Marc Schumann1-1/+1
2012-04-14Change columns: empty buttons when images turned off.Marc Schumann1-10/+13
2012-04-12Bug 741078: Release notes for Bugzilla 4.2.1Frédéric Buclin1-2/+47
2012-04-11If you're not allowed to change status or resolution, their values are being ...Marc Schumann1-15/+24
2012-03-29Bug 554819: Quicksearch should be using Text::ParseWords instead of custom co...Frédéric Buclin2-8/+96
2012-03-28Bug 735821: Fix broken HTML code in bugmail.html.tmpl.Tiago Mello1-1/+1
2012-03-26Bug 734471 - Need new hook edituser search templateFrancisco Donalisio1-0/+3
2012-03-26Add hooks for alternative login methods. r,a=LpSolit.Gervase Markham2-0/+5
2012-03-17Fix bustage: Bugzilla -> terms.BugzillaFrédéric Buclin1-3/+3
2012-03-17Bug 736057: Add to the release notes that |FILTER url_quote| has been replace...Frédéric Buclin1-0/+3
2012-03-10Tabular reports' column headers do not use display_value.Marc Schumann1-1/+1
2012-03-06Fix bustageFrédéric Buclin1-1/+0
2012-03-06Bug 545610: Correctly parse CGI parameters, especially when using mod_perlFrédéric Buclin1-6/+7
2012-03-06Bug 731323: Wrong URLs in the "Total" row at the bottom of tabular reports wh...Frédéric Buclin1-0/+8
2012-03-03Bug 731586: Email notifications about status changes in blockers are incorrec...Frédéric Buclin2-11/+7
2012-02-28Bug 695514: Slow performance in field-events.js.tmpl on show_bug.cgi with lar...Frédéric Buclin3-3/+14
2012-02-25Bug 730552: HTML markup validation: unescaped "&" in CSV link on buglist.cgiFrédéric Buclin1-1/+1
2012-02-22Bug 725663 - (CVE-2012-0453) [SECURITY] CSRF vulnerability in the XML-RPC API...Dave Lawrence1-0/+5
2012-02-20Bug 718283: Indentation and newlines in the "Descriptive text sent within whi...Matt Selsky1-2/+2
2012-02-08Bug 722161: Clickjacking is possible in "View All" with HTML attachmentsFrédéric Buclin1-4/+16
2012-01-31(CVE-2012-0440) [SECURITY] JSON-RPC permits to bypass token checks and can le...Frédéric Buclin1-0/+5
2012-01-31Bug 714472: (CVE-2012-0448) [SECURITY] utf8 homoglyphs are allowed in email a...Frédéric Buclin2-5/+3
2012-01-27Bug 720756 - Update release notes for Bugzilla 4.2rc2Dave Lawrence1-4/+8
2012-01-26Fix bustage due to bug 715514.Tiago Mello1-1/+1
2012-01-25Bug 715514: Fix showdependencytree misleading in "hide resolved" viewMatt Selsky1-2/+2
2012-01-12Bug 717215: Remove references to url_quote filterSimon Green2-5/+1
2012-01-11Bug 717210: If all attachments are stored locally (maxattachmentsize = 0, max...Simon Green2-3/+3
2012-01-11Bug 715650 - User auto-completion does not work in request.cgi for requester ...Dave Lawrence1-1/+2
2012-01-11Bug 716227: When checksetup.pl tells the admin that he should edit variables ...Frédéric Buclin1-6/+8
2012-01-10Bug 716283: Clickjacking in the attachment "Details" page allows to bypass to...Frédéric Buclin2-0/+13
2012-01-06Bug 706753 about JSON::RPC 1.01 is now fixedFrédéric Buclin1-4/+0
2012-01-06Bug 695294: The See Also field is not visible in "Format for Printing"Matt Selsky1-0/+12
2012-01-06Bug 715705: User auto-completion doesn't work for watched users in the email ...Frédéric Buclin1-1/+2
2012-01-06Bug 714664: The content of the "emailregexpdesc" parameter is not escaped whe...Frédéric Buclin2-2/+2
2011-12-28user_autocompletion -> ajax_user_autocompletionFrédéric Buclin1-1/+1
2011-12-28Bug 713346: Release notes for Bugzilla 4.2rc1Frédéric Buclin2-3418/+4037
2011-12-26Bug 683644: Foreign keys aren't renamed correctly when DB tables are renamedFrédéric Buclin1-1/+1
2011-12-13Bug 705474 - CSRF vulnerability in createaccount.cgi allows possible unauthor...Reed Loden1-0/+1
2011-12-05Bug 577854: URL field header caption does not link to field value description...Matt Selsky2-10/+7
2011-11-29Bug 692737 - Main page icons are not centered.Marc Schumann1-16/+24
2011-11-29Bug 686422: Fix custom search's history interaction on HTML4 browsersByron Jones1-1/+5
2011-11-28Bug 705393: Improve the error message thrown by Update.pm when updates.bugzil...Frédéric Buclin1-5/+11
2011-11-26Bug 255606: Do not let buglist.cgi return all bugs by defaultFrédéric Buclin3-4/+13
2011-11-22Bug 703975: CSRF vulnerability in post_bug.cgi allows possible unauthorized b...Frédéric Buclin1-57/+0
2011-11-21Bug 703983 - CSRF vulnerability in attachment.cgi allows possible unauthorize...Reed Loden1-48/+0
2011-11-18Fix bustage due to bug 643411.Tiago Mello1-2/+2
2011-11-18Bug 643411: New default bug limit makes time summary results confusingTiago Mello1-0/+9