index
:
mailman2
master
upstream/2.1
mirror of https://code.launchpad.net/~mailman-coders/mailman/2.1
git
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
Mailman
/
Cgi
(
unfollow
)
Commit message (
Expand
)
Author
Files
Lines
2018-02-04
Fix XSS and info leak in options CGI - CVE-2018-5950
Mark Sapiro
1
-15
/
+17
2018-02-03
It's not necessary to replace _ with - in language codes for reCAPTCHA.
Mark Sapiro
1
-3
/
+1
2018-01-30
Corrected i18n from rev. 1738 and updated message catalogs.
Mark Sapiro
1
-3
/
+5
2018-01-30
Update Japanese translation (with msgid fix)
Yasuhito FUTATSUKI at POEM
1
-3
/
+3
2018-01-29
Allow the list subscription form to be protected from spam bots using
David Siebörger
2
-0
/
+32
2017-06-24
Added screen reader labels to some admindb radio buttons.
Mark Sapiro
1
-15
/
+10
2017-06-21
Added text for screen readers only to checkboxes on admin Membership List.
Mark Sapiro
1
-7
/
+16
2017-06-09
Display date of held subscriptions and keep newest.
Mark Sapiro
1
-6
/
+11
2017-06-07
Reverted another getfirst in the multi-value CGI defence.
Mark Sapiro
1
-1
/
+1
2017-06-05
Bumped Copyrights and fixed a bug in prior commit.
Mark Sapiro
10
-12
/
+12
2017-06-05
Defend against CGI requests with multiple values for the same parameter.
Mark Sapiro
11
-105
/
+105
2017-06-04
Fixed a regression in Cgi/options.py.
Mark Sapiro
1
-12
/
+12
2017-04-25
Change 'subscribees' to 'subscribers' on admin mass subscribe page.
Mark Sapiro
1
-1
/
+1
2017-02-22
Fixed an uncaught TypeError in the subscribe CGI.
Mark Sapiro
1
-1
/
+1
2017-02-03
Fixed a TypeError thrown in the roster CGI when called with a listname
Mark Sapiro
1
-3
/
+3
2016-10-27
Fixed incorrect "view more members" links at the bottom of the admin
Mark Sapiro
1
-4
/
+5
2016-10-11
Further changes to keep domains aligned with virtual list notification emails
Jim Popovitch
1
-3
/
+2
2016-09-29
Fix unicode links in multi-page admin Membership list search results.
Mark Sapiro
1
-2
/
+5
2016-08-26
Fixes for CVE-2016-6893 and more.
Mark Sapiro
3
-5
/
+71
2016-07-19
Membership List letter links could be incorrectly rendered as Unicode.
Mark Sapiro
1
-0
/
+3
2016-07-14
Catch TypeError from certain defective crafted POST requests.
Mark Sapiro
11
-14
/
+132
2016-05-22
Prior fix for lp:1573623 at rev 1647 was incomplete.
Mark Sapiro
1
-2
/
+3
2016-05-18
Added a bunch more templates to those that can be edited via the GUI.
Mark Sapiro
1
-1
/
+13
2016-05-17
Catch MMUnknownListError in case list is removed after listing names.
Mark Sapiro
2
-3
/
+11
2016-04-22
White space left of Logout link is no longer part of the link.
Mark Sapiro
1
-3
/
+4
2015-12-06
Submitting the user options form for a user who was asynchronously
Mark Sapiro
1
-0
/
+8
2015-09-16
Defended against a user submitting URLs with query fragments or POST
Mark Sapiro
1
-0
/
+8
2015-07-20
Don't show digest options on user's options page for non-digestable lists.
Mark Sapiro
1
-2
/
+8
2015-06-23
Support for HTTP_X_FORWARDED_FOR and HTTP_FORWARDED_FOR (RFC 7239)
Jim Popovitch
3
-9
/
+18
2015-04-23
If SUBSCRIBE_FORM_SECRET is enabled and a user's network has a load
Mark Sapiro
2
-12
/
+35
2015-04-13
Improved search in admin UI Membership List.
Mark Sapiro
1
-1
/
+10
2015-03-09
Implemented member address change via the admin GUI.
Mark Sapiro
1
-1
/
+109
2015-02-03
Bumped copyright year for prior change.
Mark Sapiro
1
-1
/
+1
2015-01-30
The admindb interface has been fixed so the the detail message body
Mark Sapiro
1
-8
/
+6
2015-01-22
A number of changes from the unofficial 2.2 branch have been backported to
Mark Sapiro
2
-18
/
+21
2014-12-20
Implement a new DEFAULT_SUBSCRIBE_OR_INVITE setting to control the default
Mark Sapiro
1
-1
/
+2
2014-11-07
Catch the NotAMemberError exception thrown if an authenticated
Mark Sapiro
1
-0
/
+7
2014-09-21
The options CGI now rejects all but HTTP GET and POST requests.
Mark Sapiro
1
-0
/
+12
2014-06-09
<label> tags have been added around most check boxes and radio buttons
Mark Sapiro
1
-10
/
+29
2014-05-02
Removed HTML tags from the title of a couple of rmlist.py pages because
Mark Sapiro
1
-2
/
+2
2014-04-15
Fixed the admin Membership List so a search string if any is not lost
Mark Sapiro
1
-1
/
+2
2014-03-21
- Added the list name to the vette log "held message approved" entry.
Mark Sapiro
10
-20
/
+20
2014-02-07
Changed the message from the confirm CGI to not indicate approval is
Mark Sapiro
1
-2
/
+3
2013-07-19
Enable setting a default grouping/sorting for the admindb held message
Mark Sapiro
1
-4
/
+7
2013-07-18
Backported the held message sorting to 2.1 and made it optional.
Mark Sapiro
1
-18
/
+51
2013-06-07
- It is no longer possible to add 'invalid' addresses to the ban_list
Mark Sapiro
1
-15
/
+39
2013-04-03
The pending (un)subscriptions waiting approval are now sorted by email
Mark Sapiro
1
-5
/
+5
2012-12-14
Added a minimum delay between retrieval and submission of the subscribe form.
Mark Sapiro
1
-0
/
+4
2012-11-24
Implement SUBSCRIBE_FORM_SECRET to mitigate bot subscribes. (LP: 1082746)
Mark Sapiro
2
-2
/
+34
2012-10-30
Added 'legend' to the list of CSRF safe parameters for the admin CGI.
Mark Sapiro
1
-1
/
+2
[next]