mcdruid
|
0e0a091582
|
Issue #3319062 by arx-e, poker10, rclemings, down2under, mcdruid, aitala, longwave, edvanleeuwen, jbiechele, davidwhthomas, danrod, stevewilson, Chase.: [D7] PhpMail : broken mail headers in PHP 8.0+ because of LF characters
|
2024-12-04 11:59:47 +00:00 |
Juraj Nemec
|
81842bc61b
|
Issue #3478716 by ram4nd, mcdruid, poker10: [D7] Full path disclosure from errors on maintenance pages
|
2024-12-04 09:57:13 +01:00 |
|
mcdruid
|
f372b9bc37
|
Issue #3444017 by poker10, avpaderno, akalata, mcdruid: [D7] HTTP_HOST header cannot be trusted
|
2024-12-03 19:35:45 +00:00 |
|
mcdruid
|
c91a5ca09a
|
Issue #3383223 by poker10, dokumori, dsnopek, catch, berdir, effulgentsia, mlhess, samuel.mortenson, poiu, moshe weitzman: URL aliases can be used to override trusted urls
|
2024-12-03 16:23:12 +00:00 |
|
mcdruid
|
5e42a643f9
|
Issue #1447236 by C. Lee, avpaderno, mfb, poker10: DefaultMailSystem implements MailSystemInterface::format() incorrectly
|
2024-12-03 16:16:32 +00:00 |
|
mcdruid
|
12aace3217
|
Issue #3182166 by stefanos.petrakis@gmail.com, poker10, almador, adinan cenci, czunigaco, rhip, benjifisher, neclimdul, cilefen: [D7] preg_split in _filter_url breaks for long html tags
|
2024-12-03 16:11:47 +00:00 |
|
mcdruid
|
2823495799
|
Issue #3397882 by poker10, andypost, joseph.olstad: [D7 PHP 8.3] TextSummaryTestCase::testLength() fails on some libxml versions
|
2024-12-03 13:54:43 +00:00 |
|
mcdruid
|
8f0cd6880f
|
Issue #3446569 by poker10, joseph.olstad: [D7 PHP 8.3] Fix SessionHttpsTestCase->testEmptySessionId() failure
|
2024-12-03 13:47:28 +00:00 |
|
mcdruid
|
72bcab83e9
|
Issue #3464097 by avpaderno, poker10: CacheClearCase::testClearArray() sets a persistent variable that has no effect
|
2024-12-03 13:42:01 +00:00 |
|
Juraj Nemec
|
ee5aea69d4
|
Issue #2453785 by adammalone: Password hashing tests do not cover all options
|
2024-12-03 00:47:30 +01:00 |
|
Juraj Nemec
|
59d2480af1
|
Issue #2401743 by EPashkin: Wrong link to test results in settings form
|
2024-12-03 00:41:26 +01:00 |
|
Juraj Nemec
|
cb5f7dee3d
|
SA-CORE-2024-008 by mcdruid, fabianx, poker10, larowlan, longwave, alexpott
|
2024-11-20 16:56:04 +01:00 |
|
Juraj Nemec
|
08d46845b4
|
SA-CORE-2024-005 by cm0dit, greggles, GrandmaGlassesRopeMan, wim leers, mcdruid, ram4nd, fabianx, poker10
|
2024-11-20 16:56:04 +01:00 |
|
Juraj Nemec
|
e755b13eac
|
Issue #3429165 by mcdruid: Sync D7's copy of Archive_Tar with new 1.5.0 release
|
2024-06-03 16:24:40 +02:00 |
|
mcdruid
|
9907f7d5bb
|
Issue #2722453 by DamienMcKenna, poker10, moonray, mcdruid: [D7] Improve cron logging
|
2024-06-03 14:48:06 +01:00 |
|
mcdruid
|
fc873aa3a5
|
Issue #3279652 by apaderno, poker10, anrikun: Erroneous signature and documentation for user_login_finalize() and hook_user_login()
|
2024-06-03 14:21:12 +01:00 |
|
mcdruid
|
30cda5207d
|
Issue #3362238 by poker10, DeanThomas, gbirch, sakthi_dev, joelpittet: _form_validate sends null to drupal_strlen triggering deprecation notice
|
2024-06-03 14:01:21 +01:00 |
|
mcdruid
|
842b56b4ea
|
Issue #1982810 by poker10, mcdruid, Liam Morland, jp.stacey, joseph.olstad, Exploratus, lilott8, g33kg1rl, gcb, levelos, longwave, Leeteq, sunset_bill, Oualid-EZR, caspervoogt, hgoto, capysara: Core entity_get_controller gets a NULL controller class
|
2024-06-03 13:20:00 +01:00 |
|
mcdruid
|
5ab0c2466d
|
Issue #3331044 by poker10, anrikun, Xoruna, apaderno: Notice: Undefined index: form_build_id in ajax_get_form()
|
2024-06-03 12:23:37 +01:00 |
|
mcdruid
|
7a6e17830a
|
Issue #3212823 by poker10, vctlzac, apaderno, mcdruid: [D7] Do not trigger hook_file_download when no file is requested
|
2024-06-03 11:54:50 +01:00 |
|
mcdruid
|
f2bbc37d65
|
Issue #3032209 by poker10, hadsie, Fabianx, mcdruid: Allow users to update their settings regardless of duplicate email addresses in the users table
|
2024-05-31 17:08:50 +01:00 |
|
mcdruid
|
d98b9ec54a
|
Issue #2763435 by David_Rothstein, fjgarlin, BramDriesen, Mixologic, poker10: Exceptions during the setUp() or tearDown() method of a test are not handled
|
2024-05-31 16:35:46 +01:00 |
|
Juraj Nemec
|
e1fe0eb6eb
|
Issue #1180722 by TR: Remove dead code from node_filter_form()
|
2024-04-28 20:53:12 +02:00 |
|
mcdruid
|
444c26dd1b
|
Issue #2853671 by jacob.embree, dpi, poker10, apaderno: [D7] Useless test in UserRegistrationTest.php
|
2024-04-12 13:57:27 +01:00 |
|
Juraj Nemec
|
3b76f99e6d
|
Issue #3424898 by mcdruid: Enable Announcements Feed by default, but allow opt-out
|
2024-03-06 13:15:51 +01:00 |
|
mcdruid
|
9864af28b6
|
Issue #3425698 by poker10: Announcements module info file is missing the version property
|
2024-03-05 10:58:02 +00:00 |
|
Juraj Nemec
|
81eec0280c
|
Issue #3357707 by mcdruid, mitthukumawat, fjgarlin, jijojoseph_zyxware, poker10, prasanth_kp, hestenet: Backport the Announcements Feed core module to Drupal 7
|
2024-03-04 17:44:04 +01:00 |
|
Juraj Nemec
|
03b2efb8c6
|
Issue #3409043 by mcdruid: [D7] Harden user_pass_rehash() against attack
|
2024-01-22 21:08:38 +01:00 |
|
mcdruid
|
fcceb070a5
|
Issue #691932: adding the test files this time; oops
|
2023-12-05 11:59:09 +00:00 |
|
mcdruid
|
e342502138
|
Issue #2180877 by poker10, ClassicCut, juankvillegas: file_validate_image_resolution() doesn't recalculate the image dimensions after checking $maximum_dimensions
|
2023-12-05 11:35:32 +00:00 |
|
mcdruid
|
6b7e2b1ae4
|
Issue #2847553 by poker10, Jill L, David_Rothstein: XSS attribute handling mangles valid attribute names containing numbers (D7 backport)
|
2023-12-05 11:32:10 +00:00 |
|
mcdruid
|
c3148e173a
|
Issue #3384397 by poker10, Fabianx: [D7] When adding a new menu link, restrict the available parents to the current menu
|
2023-12-05 11:30:06 +00:00 |
|
mcdruid
|
7bfe25f63c
|
Issue #764408 by poker10, sgtpep, acrollet, David_Rothstein, checker, Fabianx, bkouchi: [D7] Drupal.t() does not respect locale_custom_strings
|
2023-12-05 11:28:27 +00:00 |
|
mcdruid
|
6380331eb0
|
Issue #691932 by BTMash, Shellingfox, jhedstrom, dinarcon, AndyF, zhangtaihao, catch, MustangGB, wamilton, Barry_Fisher, brad.bulger, yched, xjm, Sylvain Lecoy, 5n00py, chx, droplet, tim.plunkett, ohthehugemanatee, parasolx, cilefen, andypost, poker10, Fabianx: Add hook_field_schema_alter()
|
2023-12-05 11:22:06 +00:00 |
|
mcdruid
|
68ca415ff6
|
Issue #3396440 by poker10, joelpittet, tibezh, Fabianx: [D7 PHP 8.1] html_entity_decode(): Passing null to parameter #1 ($string) of type string is deprecated in decode_entities()
|
2023-12-05 11:03:17 +00:00 |
|
mcdruid
|
fd71fedd65
|
Issue #2345695 by poker10, formatC'vt, frodri, quietone, mgifford, mondrake, thirdender, james.williams: Users are able to upload 0-byte images
|
2023-12-05 10:46:41 +00:00 |
|
mcdruid
|
dcf3c1404e
|
Issue #3386936 by poker10: Remove unused/non-working function getSchemaUpdates()
|
2023-12-01 22:22:36 +00:00 |
|
mcdruid
|
bdb7dd4353
|
Issue #3326994 by klonos, poker10, BramDriesen: Username enumeration via one time login route
|
2023-12-01 22:18:50 +00:00 |
|
mcdruid
|
72c4d548f6
|
Issue #3383556 by poker10, BramDriesen, cussack: Username disclosure in /user/password
|
2023-12-01 21:41:58 +00:00 |
|
mcdruid
|
4884d1551b
|
Issue #2677118 by Chi, poker10: Wrong usage of watchdog in system.api.php
|
2023-12-01 14:21:22 +00:00 |
|
mcdruid
|
9b894d6e07
|
Issue #2801329 by gianani, poker10, MustangGB: Remove system.cron.js
|
2023-12-01 14:19:29 +00:00 |
|
mcdruid
|
4c0e15a792
|
Issue #2978218 by heilop, poker10, langelhc: Add "delete" link on node Translate tab Operations
|
2023-12-01 13:56:40 +00:00 |
|
mcdruid
|
80cc744787
|
Issue #2880910 by tatarbj, joseph.olstad, vijaycs85, poker10, klausi, oadaeh, mahalingam_cs, David_Rothstein, mcdruid: [D7] Nothing clears the "5 failed login attempts" security message when a user resets their own password
|
2023-11-13 10:27:12 +00:00 |
|
mcdruid
|
c868605197
|
Issue #3348669 by Chase., poker10: system.mail.inc: strpos(): Passing null to parameter #1 ($haystack) of type string is deprecated
|
2023-11-10 11:54:23 +00:00 |
|
mcdruid
|
5ea9bbef7c
|
Issue #3372666 by hadsie, poker10, ayushmishra206, jibran, larowlan, amietpatial, alexpott, aalamaki, afox, mark_fullmer, mohit_aghera, Wim Leers, wroxbox, tanubansal, rteijeiro, NikolaAt, rakesh.gectcr, richardbporter: D7 Backport: Links with "@" are converted into email addresses even if there is no domain suffix present
|
2023-11-10 11:50:01 +00:00 |
|
mcdruid
|
1acc41ae01
|
Issue #2540830 by swarad07, mikemadison, jhodgdon, poker10, David_Rothstein, cilefen: Sanitize watchdog() link in dblog_event()
|
2023-11-10 11:38:17 +00:00 |
|
Juraj Nemec
|
6a020fca83
|
Issue #3380876 by poker10: [D7 PHP 8.3] unserialize(): Extra data starting at offset
|
2023-10-20 19:52:39 +02:00 |
|
mcdruid
|
5fa9cc2ddc
|
Issue #3393147 by fjgarlin, mcdruid, poker10: Exceptions ignored in errorHandler for DrupalTestCase
|
2023-10-11 11:44:41 +01:00 |
|
Juraj Nemec
|
96a9946c34
|
Issue #3373222 by Gábor Hojtsy, mcdruid: Fallback to feed item description does not strip HTML, only takes 40 chars even though field allows 255
|
2023-09-15 18:55:55 +02:00 |
|
Juraj Nemec
|
605b36bde2
|
Issue #3386055 by fjgarlin: Cookie base path not check in the test but set in code
|
2023-09-12 00:12:54 +02:00 |