aboutsummaryrefslogtreecommitdiffstats
path: root/Bugzilla/CGI.pm
Commit message (Collapse)AuthorAgeFilesLines
* Bug 1433400 (CVE-2018-5123) Prevent cross-site image requests from leaking ↵Dylan William Hardison2018-02-161-0/+64
| | | | | | contents of certain fields due to regex search r=jfearn,a=dylan
* Bug 1255619: CGI scripts should not send duplicated headersFrédéric Buclin2016-03-211-2/+3
| | | | r/a=dkl
* Bug 1087400: CGI 4.05 throws tons of "CGI::param called in list context" ↵Frédéric Buclin2014-10-271-0/+1
| | | | | | warnings r/a=glob
* Bug 1068521: "Use of uninitialized value" warningsPami Ketolainen2014-09-181-4/+11
| | | | r=glob,a=glob
* Bug 996893: Perl 5.18 and newer throw tons of warnings about deprecated modulesFrédéric Buclin2014-08-131-0/+1
| | | | r=dkl a=sgreen
* Bug 1032323: canonicalise_query() should omit parameters with empty values ↵Ed Morley2014-07-101-2/+5
| | | | | | so generated URLs are shorter r=glob,a=sgreen
* Bug 713926: (CVE-2014-1517) [SECURITY] Login form lacks CSRF protectionFrédéric Buclin2014-04-171-1/+14
| | | | r=dkl a=justdave
* Bug 543432: [PostgreSQL] Crash when typing a string in combination with a ↵Frédéric Buclin2014-01-031-2/+23
| | | | | | numeric field r=dkl a=sgreen
* Bug 938596 - Add hook for modifying HTTP headers. r=LpSolit.Gervase Markham2013-11-271-9/+19
|
* Bug 851267: Bugzilla times out when a user has several thousands of votesFrédéric Buclin2013-09-281-4/+4
| | | | r=dkl a=justdave
* Bug 569177 - Add support for eTag for WebServicesDave Lawrence2013-08-091-3/+3
| | | | r/a=glob
* Bug 866927 - Enhance Bugzilla WebServices to allow data access using RESTDave Lawrence2013-07-121-1/+1
| | | | r=glob,a=justdave
* Bug 413851 - add CSV output option to request lists. r=LpSolit.Gervase Markham2013-01-021-0/+25
|
* Bug 787668: Use |use parent| instead of |use base|Matt Selsky2012-12-011-1/+1
| | | | r/a=LpSolit
* Bug 816747 - Add dummy POD for unPODded methods.Marc Schumann2012-11-301-0/+22
| | | | r/a=LpSolit
* Bug 787529: Use |use 5.10.1| everywhereFrédéric Buclin2012-09-011-0/+3
| | | | r=wicked a=LpSolit
* Bug 782856: Remove the obsolete BEGIN block in Bugzilla/CGI.pmFrédéric Buclin2012-08-291-9/+0
| | | | r=glob a=LpSolit
* Fix more bustage caused by Bug 772953Byron Jones2012-08-291-4/+6
|
* Fix bustage caused by Bug 772953Byron Jones2012-08-291-1/+4
|
* Bug 772953: Remove the token from buglist urlsByron Jones2012-08-281-0/+5
| | | | r=dkl, a=LpSolit
* Bug 783386: Removing PATH_INFO prevents Bugzilla from working correctly with IISFrédéric Buclin2012-08-171-2/+9
| | | | r=dkl a=LpSolit
* Bug 771100: Unable to attach a file to a bug with perl 5.16Frédéric Buclin2012-08-151-1/+1
| | | | r=dkl a=LpSolit
* Bug 779088 - Allow extensions to whitelist PATH_INFODave Lawrence2012-08-101-3/+9
| | | | r/a=LpSolit
* Fix typo in a commentFrédéric Buclin2012-07-241-1/+1
|
* Bug 243764: Remove the Path-Info information from the URL as it causes ↵Frédéric Buclin2012-07-241-0/+5
| | | | | | unexpected behaviors r=dkl a=LpSolit
* Bug 761199: buglist.cgi enters in an infinite loop if called without ↵Frédéric Buclin2012-06-071-0/+4
| | | | | | arguments and the user is logged in r=timello a=LpSolit
* Bug 761331: Remove our customized multipart_init() methodFrédéric Buclin2012-06-051-29/+0
| | | | r=glob a=LpSolit
* Bug 671612: Send "X-Content-Type-Options: nosniff" with every responseMatt Selsky2012-05-291-0/+4
| | | | r/a=LpSolit
* Bug 730670: Do not redirect in buglist.cgi to improve performanceFrédéric Buclin2012-02-271-1/+9
| | | | r=glob a=LpSolit
* Bug 680131: Replace the MPL 1.1 license by the MPL 2.0 one in all files, and ↵Frédéric Buclin2012-01-111-21/+5
| | | | | | add it to files which miss one r=kiko r=mkanat r=mrbball a=LpSolit
* Bug 629326: Make it simpler to check ETagsMax Kanat-Alexander2011-12-261-0/+20
| | | | r/a=LpSolit
* Bug 680771 - Send X-XSS-Protection header for XSS prevention/blockingReed Loden2011-11-211-0/+4
| | | | [r=mkanat a=LpSolit]
* Bug 647649: Change the old "Boolean Charts" UI into the new AND/ORMax Kanat-Alexander2011-05-311-3/+12
| | | | | "Custom Search" UI. r=timello, a=mkanat
* Bug 655847: Accessing buglist.cgi throws: Use of inherited AUTOLOAD for ↵Frédéric Buclin2011-05-291-9/+1
| | | | | | non-method Bugzilla::CGI::SERVER_PUSH() is deprecated at Bugzilla/CGI.pm line 233 r/a=mkanat
* Bug 652625 - Empty queries still get run because the list_id parameter is ↵David Lawrence2013-05-031-1/+3
| | | | | | added to them r/a=mkanat
* Bug 637977: Re-setup CGI.pm global variables on every request under mod_perl,Max Kanat-Alexander2011-03-131-13/+24
| | | | | | which prevents CGI.pm from generating URLs with semicolons in them instead of ampersands. r=glob, a=mkanat
* Remove unused variable, per my review commentFrédéric Buclin2010-12-281-1/+0
| | | https://bugzilla.mozilla.org/show_bug.cgi?id=615574
* Bug 615574: Make every search done by buglist.cgi create a list_id, so thatMax Kanat-Alexander2010-12-271-0/+49
| | | | | even Saved Searches get "last list" support. r=LpSolit, a=LpSolit
* Bug 475894 - Send the 'X-Frame-Options: SAMEORIGIN' header to help protect ↵Reed Loden2010-12-181-0/+6
| | | | | | against clickjacking. [r=mkanat a=mkanat]
* Bug 607138: Don't send the Strict-Transport-Security header for theMax Kanat-Alexander2010-12-061-2/+6
| | | | | attachment_base. r=LpSolit, a=LpSolit
* Bug 600464: (CVE-2010-3172) [SECURITY] Content/Header injection due to ↵Byron Jones2010-11-031-1/+2
| | | | | | non-random multipart/x-mixed-replace boundary r=mkanat a=LpSolit
* Bug 607966: Use of qw(...) as parentheses is deprecated since Perl 5.13.5Frédéric Buclin2010-10-281-3/+1
| | | | r=gerv a=LpSolit
* Bug 600475 - Support the 'includeSubDomains' flag as an option for the ↵Reed Loden2010-09-291-2/+6
| | | | | | 'Strict-Transport-Security' advanced option in order to protect subdomains. [r=glob a=mkanat]
* Bug 594990: Make the Strict-Transport-Security HTTP header only be sentMax Kanat-Alexander2010-09-271-2/+2
| | | | | if a particular parameter is enabled. r=glob, a=mkanat
* Bug 398308: Make Search.pm take a hashref for its "params" argumentMax Kanat-Alexander2010-07-151-12/+0
| | | | | instead of taking a CGI object. r=mkanat, a=mkanat (module owner)
* Bug 521416: Some web servers fail to set the QUERY_STRING parameterbyron jones (glob)2010-07-151-0/+3
| | | | r/a=mkanat
* Bug 575097 - "New STS header in Bugzilla::CGI causes malformed header error ↵Reed Loden2010-06-271-5/+6
| | | | | | due to lack of Content-Type naming" [r=LpSolit a=LpSolit]
* Bug 562475 - "Bugzilla should use strict-transport-security (STS) headers"Reed Loden2010-06-251-0/+6
| | | | [r=mkanat a=mkanat]
* Bug 574166: Make clean_search_url take into account the new email3 fieldsMax Kanat-Alexander2010-06-241-1/+1
| | | | | from query.cgi r=glob, a=mkanat
* Bug 24896: Make the First/Last/Prev/Next navigation on bugs work withMax Kanat-Alexander2010-06-151-0/+4
| | | | | multiple buglists at once r=glob, a=mkanat
generated by cgit v1.2.1 (git 2.21.0) at 2024-11-25 13:56:39 +0000