aboutsummaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
* Vanilla 4.4.9 to 5.0 without history due to massive merge conflictsChristian Ruppert2015-07-111-6/+10
* Bug 1075578: [SECURITY] Improper filtering of CGI argumentsFrédéric Buclin2014-10-061-1/+1
* Fix bustage due to bug 1061247Frédéric Buclin2014-10-011-0/+1
* Bug 1061247 - Successfully using a password change token should invalidate al...Reed Loden2014-09-301-0/+2
* Bug 1046145: It is no longer possible to cancel an email address change when ...Frédéric Buclin2014-08-061-1/+1
* Bug 706271: CSRF vulnerability in token.cgi allows possible unauthorized pass...Frédéric Buclin2012-08-061-0/+5
* Bug 355596: Your password should be requested to confirm your email address c...Koosha Khajeh Moogahi2012-05-281-5/+11
* Bug 752303: It is no longer possible to cancel an email address change when t...Koosha Khajeh Moogahi2012-05-181-14/+5
* Bug 319953: Missing real email syntax checkFrédéric Buclin2012-01-231-3/+1
* Bug 680131: Replace the MPL 1.1 license by the MPL 2.0 one in all files, and ...Frédéric Buclin2012-01-111-20/+5
* Bug 711714: (CVE-2011-3667) [SECURITY] The User.offer_account_by_email WebSer...Frédéric Buclin2011-12-281-0/+4
* Fix complains from 012throwables.t due to bug 677901Frédéric Buclin2011-08-161-8/+9
* Bug 677901: Bugzilla crashes when no token is passed to token.cgi but the scr...Frédéric Buclin2011-08-161-161/+101
* Bug 658929 - User autocomplete is very slow when there are lots of users in t...David Lawrence2011-07-051-1/+1
* Bug 565879: Merge ThrowCodeError("action_unrecognized"), ThrowUserError("no_v...Frédéric Buclin2010-05-201-5/+2
* Bug 514913: Eliminate ssl="authenticated sessions"mkanat%bugzilla.org2009-10-091-8/+0
* Bug 508189: (CVE-2009-3166) [SECURITY] Logging in after changing your passwor...mkanat%bugzilla.org2009-09-111-0/+4
* Bug 349336: Automatically log in the user when he chooses his password to cre...lpsolit%gmail.com2009-08-111-2/+6
* 496856 - correct patchbbaetz%acm.org2009-06-121-1/+1
* Bug 496856 - Fix token.cgi transaction handlingbbaetz%acm.org2009-06-101-5/+9
* Bug 452519: Fix timezones in emails - Patch by Frédéric Buclin <LpSolit...lpsolit%gmail.com2009-01-081-1/+2
* Bug 455814: token.cgi should reject password change requests for disabled acc...lpsolit%gmail.com2008-09-201-0/+6
* Bug 455815: Remove global variables from token.cgi - Patch by Frédéric ...lpsolit%gmail.com2008-09-191-65/+70
* Bug 428659 – Setting SSL param to 'authenticated sessions' only protects...dkl%redhat.com2008-08-181-2/+3
* Backing out these patches as they cause a regression. More informationdkl%redhat.com2008-07-291-3/+5
* Bug 428659 – Setting SSL param to 'authenticated sessions' only protects...dkl%redhat.com2008-07-101-5/+3
* Bug 405946: Some emails are not sent in the language chosen by the addressee ...lpsolit%gmail.com2008-04-021-11/+7
* Bug 403834: Replace table locks with database transactions in tokens, votes, ...lpsolit%gmail.com2007-11-191-8/+4
* Bug 399954: Make Bugzilla able to hold its dependencies in a local directorymkanat%bugzilla.org2007-10-191-1/+1
* Bug 238651 (a&b) Include the login name (in <code>) for "account_inexistent" ...timeless%mozdev.org2007-07-231-1/+1
* Bug 365472 rename 'token_inexistent' to 'token_does_not_exist' or somethingtimeless%mozdev.org2007-07-101-1/+1
* Bug 366466 - "flag notification mail has canceled spelled incorrectly" [p=ree...reed%reedloden.com2007-03-111-5/+5
* Bug 340538: Insecure dependency in exec while running with -T switch at /usr/...wurblzap%gmail.com2006-10-211-20/+20
* Bug 281181: [SECURITY] It's way too easy to delete versions/components/milest...lpsolit%gmail.com2006-10-151-1/+1
* Bug 349349: Use ->create from Bugzilla::Object instead of insert_new_user for...mkanat%bugzilla.org2006-08-261-25/+7
* Bug 87795: Creating an account should send token and wait for confirmation (p...lpsolit%gmail.com2006-08-201-0/+87
* Bug 173629: Clean up "my" variable scoping issues for mod_perlmkanat%bugzilla.org2006-07-061-3/+3
* Bug 282121: Remove globals.pl from scripts that no longer use it - Patch by F...lpsolit%gmail.com2006-06-211-9/+3
* Spelling in code comments patch: 'methids' -> 'methods'; patch by Vlad Dascal...vladd%bugzilla.org2006-06-191-1/+1
* Bug 300410: Bugzilla::Auth needs to be restructured to not require a BEGIN blockmkanat%bugzilla.org2006-05-121-1/+1
* Bug 332598: Move ValidatePassword() and DBNameToIdAndCheck() from globals.pl ...lpsolit%gmail.com2006-05-081-2/+2
* Bug 312157: Remove $::template and $::vars from globals.pl - Patch by Olav Vi...lpsolit%gmail.com2005-10-251-4/+4
* Bug 312307: Misused Throw*Error tags in code and templates - Patch by Dennis ...lpsolit%gmail.com2005-10-241-4/+2
* Bug 303697: Eliminate deprecated Bugzilla::DB routines from token.cgi - Patch...lpsolit%gmail.com2005-10-121-40/+42
* Bug 304583: Remove all remaining need to rederive inherited groupsbugreport%peshkin.net2005-08-191-2/+2
* Bug 304653: remove 'use Bugzilla::Error' from Util.pm - Patch by Frédéric B...lpsolit%gmail.com2005-08-161-3/+4
* Bug 301508: Remove CGI.pl - Patch by Frédéric Buclin <LpSolit@gmail.com> r=...lpsolit%gmail.com2005-08-101-1/+1
* Bug 301453: Move CheckEmailSyntax out of CGI.pl - Patch by Frédéric Buclin ...lpsolit%gmail.com2005-07-211-1/+1
* Bug 300336: Bugzilla::Auth should not contain any exported subroutinesmkanat%kerio.com2005-07-131-1/+1
* Bug 285695: [PostgreSQL] Username checks for login, etc. need to be case inse...mkanat%kerio.com2005-07-081-1/+3