0027351: [bugtracker] Prevent updating Issue with invalid values for ETA and Projection (dregad)
0027444: [security] the $f_admin_username in install.php without sanitize before echo (atrol)
1 of 2 issue(s) resolved. Progress (50%). View Issues
0021908: [security] Weakened security headers in 2.0.x
0024689: [administration] Remove clickable alphanumeric index in manage_user_page.php
0027114: [ui] Long unbreakable text does not auto wrap in bug details page (syncguru)
0020577: [plug-ins] Consistent use of EVENT_UPDATE_BUG_DATA
0025956: [installation] Increase minimum PHP requirement to 7.0 (dregad)
0027700: [bugtracker] Standardize on IEEE 1541 units (KiB, MiB) for file sizes (dregad)
0027572: [administration] Improve management of failed logins and locked accounts (dregad)
0020431: [db schema] Use utf8mb4 charset for new MySQL installations (dregad)
0027383: [administration] Move 'test_langs.php' script to admin checks (dregad)
0027274: [ui] Move Delete buttons into main form (dregad)
0024628: [markdown] Double quotes " and lesser than sign < are shown as HTML entity within Markdown code blocks (dregad)
0022408: [custom fields] Custom field's value logged as changed in history, when it wasn't changed (dregad)
0021820: [attachments] Support adding an attachment when editing an issue (cproensa)
0021819: [attachments] Support adding an attachment from change status page (cproensa)
0022839: [authentication] Deprecate MD5 login method and replace with BCRYPT hash (dregad)
0026929: [api rest] Support user account unlock via REST API (dregad)
0026101: [ui] Upgrade to font-awesome free 5.0 (syncguru)
0017577: [performance] Improve print_user_option_list() performance (dregad)
0019964: [authentication] Wrong anonymous rights application (dregad)
0020307: [printing] Print issue page needs to adjust formatting for tags and relationship handler (vboctor)
0020540: [attachments] Implement upgrade step to cleanup corrupt disk attachments after db->disk conversion (dregad)
0020874: [ui] Content Security Policy blocked embedded images added by Chrome Extension (vboctor)
0021694: [ui] inconsistent presentation of required fields (syncguru)
0022464: [custom fields] Loose type comparison can prevent custom field update (dregad)
0022840: [authentication] Don't expire user sessions when updating password hash after login method change (dregad)
0022841: [authentication] Don't truncate password when it exceeds db field size (dregad)
0024188: [ui] Update issue history code to display user names via standard APIs
0024241: [markdown] $g_html_valid_tags are not rendered if Markdown is enabled (dregad)
0025764: [email] Enable S/MIME signed e-mail notifications (community)
0026142: [plug-ins] Improve handling of invalid / incorrectly installed plugins (dregad)
0027118: [security] Update PHPMailer to 6.2.0 (dregad)
0027584: [documentation] Out of the box Mantis does not display either a Dependancy or Relationship Graph (dregad)
0026988: [preferences] issue report TOO_MANY_REDIRECTS (dregad)
0027576: [custom fields] Incorrect error message when reporting issue with a custom field failing validation (dregad)
0027575: [code cleanup] Remove obsolete 'posted' form param when reporting new issue (dregad)
0027145: [code cleanup] Convert Project and User Pref APIs to use DbQuery class (dregad)
0027574: [ui] Manage users edit page: inconsistent spacing between sections (dregad)
0027573: [code cleanup] PHP notice in manage_user_edit_page.php when given invalid user id (dregad)
0027465: [code cleanup] Declaring a required parameter after an optional one is deprecated in PHP 8 (atrol)
0027464: [printing] print_manage_user_sort_link Function Parameter Required after Optional (atrol)
0027463: [administration] Sticky setting not available on "Workflow Thresholds" page (atrol)
0027387: [administration] Manage user page table footer is displayed even when empty (dregad)
0026962: [code cleanup] Remove unused bug_monitor_list_view_inc.php file (vboctor)
0026974: [installation] Required PHP json extension not documented and checked (atrol)
0027298: [code cleanup] Remove unused and regroup duplicated language strings (dregad)
0027384: [other] Upgrade release build scripts to Python3 (dregad)
0027375: [filters] search field at project-selection is not working anymore (dregad)
0026888: [code cleanup] Refactor printing of project selection menus (dregad)
0026903: [code cleanup] Move release scripts to main repository (vboctor)
0027241: [localization] Improve handling of missing language strings (dregad)
0027300: [documentation] Fix discrepancies in documentation for $g_display_errors (dregad)
0027302: [plug-ins] Force-installed plugins are not registered in order of priority (dregad)
0011463: [localization] Confusing message when selecting a project to enter an issue (dregad)
0027217: [bugtracker] bugnote_clear_cache() does not work properly (dregad)
0027242: [bugtracker] Allow printing of standard confirmation alerts without buttons (dregad)
0027256: [bugtracker] Refactor Profiles management pages to display a list of records (dregad)
       0027257: [bugtracker] It is not possible to clear the Default Profile (dregad)
       0027258: [code cleanup] Code cleanup around User/Global Profiles (dregad)
       0027259: [bugtracker] Profile-related operations lack confirmations (dregad)
       0027260: [ui] Confusing redirection when editing profiles (dregad)
0027150: [performance] Non visible image previews are transferred from server to client (atrol)
0027160: [ui] Wrong page position after bugnote add/edit (atrol)
0027155: [bugtracker] Update securimage to 3.6.8 (dregad)
0027144: [code cleanup] Data integrity: ensure users' default_project preference is a valid project (dregad)
0027129: [filters] Preserving filters does not work correctly on sub-sub-projects (dregad)
0027124: [plug-ins] MantisGraph: update Chart.js library to v2.9.3 (dregad)
0027122: [plug-ins] 3rd-party plugins cannot use chart.js library bundled with MantisGraph (dregad)
0027123: [javascript] MantisGraph: stop using chart.js bundled build (dregad)
0026837: [db mssql] Update ADOdb to 5.20.18 (dregad)
0027117: [administration] SQL syntax error on manage_user_page (atrol)
0027005: [time tracking] User list in time tracking summary is not sorted (dregad)
0026919: [api rest] Upgrade guzzlehttp/guzzle from 6.5.2 to 6.5.5 (dregad)
0026920: [authorization] reporter allowed to close (vboctor)
0026963: [ui] Username field in Monitor box triggers password managers (vboctor)
0025998: [documentation] REST API documentation (vboctor)
0026964: [bugtracker] Admin check always has "WARN" for magic_quotes checks (PHP 7.4) (atrol)
0026887: [sub-projects] Project Menu Bar does not indent subprojects properly (dregad)
0026930: [code cleanup] Use user_is_login_request_allowed() instead of duplicating the logic (dregad)
0026884: [administration] Misleading e-mail notification following password reset by admin (dregad)
0026840: [preferences] Non existing field name os_version used where os_build should be used (atrol)
0026892: [administration] Attachment settings not available on "Workflow Thresholds" page (atrol)
0026889: [code cleanup] Implement ConfigsGetCommand and use from REST API (vboctor)
0026890: [code cleanup] Implement LocalizedStringsGetCommand and use from REST API (vboctor)
0026891: [api rest] /config REST API endpoint reports users as not found when they exist (vboctor)
0026861: [ui] "Move" functionality offered for users that have just access to a single project (atrol)
0026823: [ui] Upgrade to fontawesome version 4.7.0 (syncguru)
0026839: [printing] Viewer does not get Selection column in View Issues or Print Reports lists (atrol)
0026821: [code cleanup] Standardize access of option database_version (atrol)
0026822: [ldap] LDAP configuration options can be set in database (atrol)
0026617: [documentation] Admin Guide has various broken links, obsolete info, etc. (dregad)
0026798: [administration] PHP warning in config_get_global (dregad)
0026811: [authentication] Username regex is too strict by default (community)
62 of 92 issue(s) resolved. Progress (67%). View Issues