1.5

Can I use IBANs with LedgerSMB?

Submitted by ehu on Sat, 07/13/2013 - 12:53

Yes. IBANs are very long bank account numbers. LedgerSMB has no problems storing, retrieving and using these without any issue.

Read more about Can I use IBANs with LedgerSMB?
Log in or register to post comments

Is LedgerSMB SEPA proof?

Submitted by ehu on Sat, 07/13/2013 - 12:47

Yes. SEPA (Single Euro Payments Area) requires support for very long bank account numbers (IBANs or International Bank Account Numbers). LedgerSMB can store and use these numbers without problems.

Read more about Is LedgerSMB SEPA proof?
Log in or register to post comments

How do I restore my data?

Submitted by ehu on Mon, 05/13/2013 - 13:04

Assuming you have followed the How Do I Backup My Data instructions, you can restore your database as follows...

Note LedgerSMB versions prior to version 1.9.16 did not support PostgreSQL 14 or higher due to a backward incompatible change in PostgreSQL 14.

Read more about How do I restore my data?
Log in or register to post comments

How do I backup my data?

Submitted by Anonymous (not verified) on Tue, 11/29/2011 - 19:44

Log in to the the 'setup.pl' administrative interface, using your ledgersmb database admin user (usually "lsmb_dbadmin" or "postgres"). The default address for setup.pl is http://localhost/ledgersmb/setup.pl.

There are 2 buttons:

Backup database (parts, customers, accounting records, etc)
Backup roles (your login accounts and rights)

One creates a backup of the content of your database. The other creates a backup of the roles.

Read more about How do I backup my data?
1 comment
Log in or register to post comments

Upgrade to LedgerSMB 1.11 (from 1.10 through 1.4)

Submitted by ehu on Sun, 10/01/2023 - 12:15

Upgrading tarball installations

There are two steps to upgrading a LedgerSMB 1.4.x - 1.10.x to 1.11:

Upgrade the software
Upgrade the company database

The last step must be executed for each company database that's set up.

Read more about Upgrade to LedgerSMB 1.11 (from 1.10 through 1.4)
Log in or register to post comments

Security advisory for CVE-2021-3731 (Clickjacking)

Submitted by ehu on Fri, 08/20/2021 - 14:22

Read more about Security advisory for CVE-2021-3731 (Clickjacking)

Insufficient protection against 'clickjacking'

Summary

LedgerSMB does not sufficiently guard against being wrapped by
other sites, making it vulnerable to 'clickjacking. This allows
an attacker to trick a targetted user to execute unintended actions.

Known vulnerable

All of:

Security advisory for CVE-2021-3693 (Cross site scripting)

Submitted by ehu on Fri, 08/20/2021 - 03:14

Read more about Security advisory for CVE-2021-3693 (Cross site scripting)

DOM cross-site scripting of authenticated users in LedgerSMB

Summary

LedgerSMB does not check the origin of HTML fragments merged into the browser's DOM. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure.

Known vulnerable

All of:

- 1.5.0 upto 1.5.30 (including)
- 1.6.0 upto 1.6.33 (including)
- 1.7.0 upto 1.7.32 (including)
- 1.8.0 upto 1.8.17 (including)

Known fixed

- 1.7.33
- 1.8.18

Security advisory for CVE-2021-3694 (Cross site scripting)

Submitted by ehu on Fri, 08/20/2021 - 03:13

Read more about Security advisory for CVE-2021-3694 (Cross site scripting)

Reflected cross-site scripting of authenticated users in LedgerSMB

Summary

LedgerSMB does not sufficiently HTML-encode error messages sent to the browser. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure.

Known vulnerable

All of:

Does LedgerSMB support "sub-accounts"?

Submitted by ehu on Thu, 07/30/2020 - 09:50

Yes. LedgerSMB has a mechanism called "Account headings". The headings are the opposite of what Intuit explains about Quickbooks for their subaccount support: Quickbooks splits an account into multiple and aggregates those new accounts into the old one for reporting. To achieve the same in LedgerSMB, you create multiple accounts and one or more headings. LedgerSMB then aggregates the totals of the accounts per heading. The system used by LedgerSMB closely resembles what MYOB describes about their accounts and headers.

Yes.

Read more about Does LedgerSMB support "sub-accounts"?
Log in or register to post comments

Upgrade to LedgerSMB 1.8

Submitted by ehu on Mon, 07/27/2020 - 23:11

Overview

Company database upgrades are supported all the way back from 1.4 directly to 1.8, using the 1.8 software. Company database upgrades from 1.3 and 1.2 are also supported, but due to the different nature of the upgrade process are called "migrations". The important difference being that when doing a migration, a copy of the data is being created in the 1.8 structure, while upgrades adjust the existing structure for 1.8.

Read more about Upgrade to LedgerSMB 1.8
Log in or register to post comments

Subscribe to 1.5