index
:
mailman2
master
upstream/2.1
mirror of https://code.launchpad.net/~mailman-coders/mailman/2.1
git
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
Mailman
/
Cgi
(
unfollow
)
Commit message (
Expand
)
Author
Files
Lines
2016-08-26
Fixes for CVE-2016-6893 and more.
Mark Sapiro
3
-5
/
+71
2016-07-19
Membership List letter links could be incorrectly rendered as Unicode.
Mark Sapiro
1
-0
/
+3
2016-07-14
Catch TypeError from certain defective crafted POST requests.
Mark Sapiro
11
-14
/
+132
2016-05-22
Prior fix for lp:1573623 at rev 1647 was incomplete.
Mark Sapiro
1
-2
/
+3
2016-05-18
Added a bunch more templates to those that can be edited via the GUI.
Mark Sapiro
1
-1
/
+13
2016-05-17
Catch MMUnknownListError in case list is removed after listing names.
Mark Sapiro
2
-3
/
+11
2016-04-22
White space left of Logout link is no longer part of the link.
Mark Sapiro
1
-3
/
+4
2015-12-06
Submitting the user options form for a user who was asynchronously
Mark Sapiro
1
-0
/
+8
2015-09-16
Defended against a user submitting URLs with query fragments or POST
Mark Sapiro
1
-0
/
+8
2015-07-20
Don't show digest options on user's options page for non-digestable lists.
Mark Sapiro
1
-2
/
+8
2015-06-23
Support for HTTP_X_FORWARDED_FOR and HTTP_FORWARDED_FOR (RFC 7239)
Jim Popovitch
3
-9
/
+18
2015-04-23
If SUBSCRIBE_FORM_SECRET is enabled and a user's network has a load
Mark Sapiro
2
-12
/
+35
2015-04-13
Improved search in admin UI Membership List.
Mark Sapiro
1
-1
/
+10
2015-03-09
Implemented member address change via the admin GUI.
Mark Sapiro
1
-1
/
+109
2015-02-03
Bumped copyright year for prior change.
Mark Sapiro
1
-1
/
+1
2015-01-30
The admindb interface has been fixed so the the detail message body
Mark Sapiro
1
-8
/
+6
2015-01-22
A number of changes from the unofficial 2.2 branch have been backported to
Mark Sapiro
2
-18
/
+21
2014-12-20
Implement a new DEFAULT_SUBSCRIBE_OR_INVITE setting to control the default
Mark Sapiro
1
-1
/
+2
2014-11-07
Catch the NotAMemberError exception thrown if an authenticated
Mark Sapiro
1
-0
/
+7
2014-09-21
The options CGI now rejects all but HTTP GET and POST requests.
Mark Sapiro
1
-0
/
+12
2014-06-09
<label> tags have been added around most check boxes and radio buttons
Mark Sapiro
1
-10
/
+29
2014-05-02
Removed HTML tags from the title of a couple of rmlist.py pages because
Mark Sapiro
1
-2
/
+2
2014-04-15
Fixed the admin Membership List so a search string if any is not lost
Mark Sapiro
1
-1
/
+2
2014-03-21
- Added the list name to the vette log "held message approved" entry.
Mark Sapiro
10
-20
/
+20
2014-02-07
Changed the message from the confirm CGI to not indicate approval is
Mark Sapiro
1
-2
/
+3
2013-07-19
Enable setting a default grouping/sorting for the admindb held message
Mark Sapiro
1
-4
/
+7
2013-07-18
Backported the held message sorting to 2.1 and made it optional.
Mark Sapiro
1
-18
/
+51
2013-06-07
- It is no longer possible to add 'invalid' addresses to the ban_list
Mark Sapiro
1
-15
/
+39
2013-04-03
The pending (un)subscriptions waiting approval are now sorted by email
Mark Sapiro
1
-5
/
+5
2012-12-14
Added a minimum delay between retrieval and submission of the subscribe form.
Mark Sapiro
1
-0
/
+4
2012-11-24
Implement SUBSCRIBE_FORM_SECRET to mitigate bot subscribes. (LP: 1082746)
Mark Sapiro
2
-2
/
+34
2012-10-30
Added 'legend' to the list of CSRF safe parameters for the admin CGI.
Mark Sapiro
1
-1
/
+2
2012-08-22
The query fragments send_unsub_notifications_to_list_owner and
Mark Sapiro
1
-9
/
+7
2012-06-20
Fixed a typo in the UPGRADING doc - bin/upgrade -> bin/update.
Mark Sapiro
1
-0
/
+0
2012-03-25
Backported the password reminder from private archive login feature from the
Mark Sapiro
1
-1
/
+22
2012-02-23
Added a few more safe_params to the CSRF check.
Mark Sapiro
1
-1
/
+2
2012-02-05
Added Tokio Kikuchi's Cross-site Request Forgery hardening to the admin UI.
Mark Sapiro
1
-6
/
+26
2011-12-31
Fix for bug #629738 could cause a crash in the admindb details display
Mark Sapiro
1
-1
/
+3
2011-11-12
Added masthead.txt to the list of templates that can be edited via the
Mark Sapiro
1
-1
/
+2
2011-06-07
The user options 'list my other subscriptions' page now indicates for
Mark Sapiro
1
-0
/
+6
2011-05-10
Fixed a problem in admindb.py where the character set for the display of
Mark Sapiro
1
-1
/
+8
2011-05-09
Prevented setting user passwords with leading/trailing whitespace. Bug #778088.
Mark Sapiro
3
-10
/
+10
2011-04-25
A new list poster password has been implemented. This password may only
Mark Sapiro
1
-0
/
+27
2011-04-23
Added a logout link to the admindb interface and made both admin and
Mark Sapiro
2
-3
/
+27
2011-04-15
Refactor last change for i18n.
Mark Sapiro
1
-5
/
+7
2011-04-14
Added a report of the affected members to the warnings issued when
Mark Sapiro
1
-3
/
+5
2011-03-29
Changed the subscribe CGI to strip leading and trailing whitespace from
Mark Sapiro
1
-2
/
+2
2011-02-18
An XSS vulnerability, CVE-2011-0707, has been fixed.
Mark Sapiro
1
-3
/
+3
2011-02-07
- Fixed an uncaught KeyError when poster tries to cancel a post which was
Mark Sapiro
1
-2
/
+3
2011-02-05
Updated copyright year for previous change.
Mark Sapiro
1
-1
/
+1
[prev]
[next]