BMO/Recent Changes/2016-03
From MozillaWiki
< BMO | Recent Changes
2016-03-29
- bug 1251236 Please show the diff on the attachment details page when a patch has been reviewed in MozReview
- bug 1259266 Private attachments when viewing a bug are indistinguishable from any other attachment.
- bug 1253718 CRM/Email request form
2016-03-22
- bug 1251442 Update VP list in Recruiting Product
- bug 1256954 Multiple Selenium cases are failing after the commit of bug 1253914
- bug 1252782 can't add a "See Also" to a Chromium bug on bugs.chromium.org
- bug 1258547 XSS through javascript: callback URLs in auth delegation
2016-03-14
- bug 1255272 Adding a flag via the MozReview batch-attachment API doesn't CC the user
- bug 1229834 extend information we [audit] log to the syslog
2016-03-09
- bug 1253483 MozReview.attachments() doesn't create flags on new attachments
- bug 1254542 Reflected XSS in comment-remo-form-payment.txt page
- bug 1254675 bug_modal template fails to escape format parameter
- bug 1254227 MozReview auth delegation allows sending out phishing mails via Bugzilla
- bug 1253914 Cross domain referer leakage when resetting the user password
- bug 1252578 CSRF and SELECT-only SQL execution attack against query_database.html
2016-03-08
- bug 1252628 404 on https://www.mozilla.org/en-US/quality/bug-writing-guidelines.html
- bug 1253032 Recent change to JSON::XS breaks some APIs
- bug 1252735 test_email_preferences.t selenium test is intermittently failing
- bug 1252862 Remove calls to delete_token() in several places where it is unnecessary
- bug 1252084 Warning when entering row into user_request_log when running commandline script
- bug 1253691 issue-api-key.pl needs to take an app_id as well
- bug 1251442 Update VP list in Recruiting Product
- bug 1252445 Tracking flags configuration is vulnerable to CSRF and causes persistent XSS
- bug 1252554 Avoid possibility of XSS in release tracking report
2016-03-01
- bug 1251047 /rest/bug/field takes 15-25 seconds to return
- bug 1252219 Attachment bounty form is vulnerable to CSRF and persistent XSS
- bug 1252216 Push extension configuration is vulnerable to CSRF
- bug 1252210 AntiSpam configuration is vulnerable to CSRF and persistent XSS
- bug 1252437 XSS vulnerability through malicious bug aliases