aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
* Bug 924932: (CVE-2013-1743) [SECURITY] Field values are not escaped correctly...Frédéric Buclin2013-10-161-14/+24
* Bug 924802: (CVE-2013-1742) [SECURITY] (XSS) "id" and "sortkey" are not sanit...Frédéric Buclin2013-10-162-5/+3
* Bug 913904: (CVE-2013-1734) [SECURITY] CSRF when updating attachmentsFrédéric Buclin2013-10-161-7/+10
* Bug 911593: (CVE-2013-1733) [SECURITY] CSRF in process_bug.cgiFrédéric Buclin2013-10-161-11/+12
* Bug 907438 - In MySQL, login cookie checking is not case-sensitive, reducing ...Dave Lawrence2013-10-161-3/+3
* Bug 906745 - In MySQL, tokens are not case-sensitive, reducing total entropy ...Dave Lawrence2013-10-162-5/+20
* Bug 912641: Release notes for Bugzilla 4.4.1Frédéric Buclin2013-10-161-2/+45
* Bug 917370: large dependency trees are very slow to loadByron Jones2013-10-151-43/+66
* Bug 340160: Speed up LogActivityEntry()Frédéric Buclin2013-10-141-5/+6
* Backout 1st part of bug 340160: state $sth doesn't work fine with mod_perlFrédéric Buclin2013-10-141-6/+5
* Fixes on checkin for bug 769134Frédéric Buclin2013-10-112-11/+8
* Bug 916254 - Bug.get should include the name for reporter, assigned_to and qa...Frank Becker2013-10-111-0/+57
* Bug 919852 - Add ability to perform quicksearch using Bug.searchDave Lawrence2013-10-012-37/+53
* Bug 864625 - Setting a non-privileged user as a requestee on a secure bug whi...Dave Lawrence2013-09-291-6/+14
* Bug 891311: Text in the "My Requests" page is misleading about how the AND/OR...Frédéric Buclin2013-09-282-34/+36
* Bug 798927: An error should be thrown when passing an illegal pronounImran Chaudhry2013-09-282-1/+9
* Bug 340160: Speed up LogActivityEntry()Frédéric Buclin2013-09-282-14/+10
* Bug 851267: Bugzilla times out when a user has several thousands of votesFrédéric Buclin2013-09-283-96/+93
* Bug 917483 - Bug.update_attachment causes error when updating filename using ...Dave Lawrence2013-09-261-6/+19
* Bug 784072 (2nd part): Exclude extensions from POD coverage checksFrédéric Buclin2013-09-261-0/+2
* fix bustage due to bug 891236: it doesn't pass t/002goodperl.tFrédéric Buclin2013-09-261-1/+3
* Bug 920787: The "Flags:" label in bug reports is badly alignedFrédéric Buclin2013-09-262-8/+2
* Bug 917669 - invalid or expired authentication tokens and cookies should thro...Dave Lawrence2013-09-265-14/+41
* Bug 893589 - 004template.t fails when templates in extension directorySimon Green2013-09-263-14/+26
* Bug 769134 - Bugzilla unintentionally removes groups when changing products w...Simon Green2013-09-262-13/+62
* Bug 714523 - editversions.cgi should use ->set_allSunil Joshi2013-09-262-7/+9
* Bug 621216 - Don't call GetQuip() if the user doesn't want quipsSunil Joshi2013-09-261-1/+4
* Bug 455301: Don't show password box on userprefs.cgi if your auth method didn...Dirk Steinmetz2013-09-251-15/+19
* Temporary fix for bug 916882: whitelist product and component when used with ...Frédéric Buclin2013-09-241-1/+4
* Bug 919475: [Oracle] Crash when non-mandatory free text custom fields are lef...Jiří Netolický2013-09-231-0/+4
* Bug 918647: "Use of uninitialized value" warnings when using quicksearchByron Jones2013-09-231-1/+5
* Bug 918362 - The "order" parameter passed to Bug.search is ignoredDave Lawrence2013-09-201-4/+4
* Bug 897510 - Create and Modify User Screen must also contain password rules a...Sunil Joshi2013-09-191-1/+8
* Bug 373820 - View User Account Log should include real nameSunil Joshi2013-09-191-1/+1
* Bug 368541 - Make it obvious that the bug alias is not part of the bug summarySunil Joshi2013-09-191-2/+2
* Bug 365501 - admin/products/groupcontrol/updated uses p as brSunil Joshi2013-09-191-7/+19
* Bug 332034 - Add New Attachment as an option for attachment.cgi when we are n...Sunil Joshi2013-09-191-2/+8
* Bug 578434 - Bug group checkboxes lay out poorly beside attachment fieldDave Lawrence2013-09-184-78/+64
* Bug 578434 - Bug group checkboxes lay out poorly beside attachment field Dave Lawrence2013-09-184-64/+78
* Bug 916979 - Bug.search ignores the "limit" parameterDave Lawrence2013-09-182-10/+6
* fix typo in commentByron Jones2013-09-181-1/+1
* Bug 877545: quicksearch shouldn't treat apostrophes as quote charactersByron Jones2013-09-181-6/+27
* Bug 916935 - Add Access-Control-Allow-Headers to REST API to indicate which H...Dave Lawrence2013-09-171-0/+1
* Fix POD (bogus in bug 866927)Frédéric Buclin2013-09-161-3/+3
* Bug 785565: Search by change history between two dates doesn't give expected ...Frédéric Buclin2013-09-161-35/+14
* Bug 914986 - Create Bug.update_attachment to update attachments via RPC/RESTSimon Green2013-09-133-4/+242
* Bug 911509: SOAP::Lite 1.0 no longer includes XMLRPC::LiteFrédéric Buclin2013-09-121-0/+10
* Bug 914262: KHTML-based browsers such as Konqueror do not support the Server-...Frédéric Buclin2013-09-101-1/+1
* Bug 914196 - Documentation for User.login should state cookies not used for J...Dave Lawrence2013-09-091-1/+3
* Bug 801284: whine.pl should use DEFAULT_COLUMN_LIST as the default column lis...Edmund Wong2013-09-051-10/+2