LedgerSMB 1.1.11 has been released
LedgerSMB 1.1.11 has been released, correcting a bug which caused
sales orders generated from timecards not to show the currency pulled from the customer. It can be downloaded on Sourceforge.
News
Changelog for LedgerSMB 1.1.10
- Corrected arbitrary code execution issue in menu.pl
Changelog for LedgerSMB 1.1.9
Corrected authentication bypass vulnerability in admin.pl
Changelog for LedgerSMB 1.1.8
- Fixed DBI error on order consolidation
- Fixed whitelisting errors on template editing
Changelog for LedgerSMB 1.1.7
Fixed another login issue
Changelog for LedgerSMB 1.1.6
Changelog for Ledger SMB 1.1.6
- Fixed problem with login failures
Changelog for LedgerSMB 1.1.5
- Updated version strings
- Whitelisted redirect destinations in Form::redirect
- Whitelisted destinations in bin/mozilla/am.pl
- Limited logout redirect destinations
- Whitelisted directories and file extensions used by the template editor
- Converted the template editor to using 3-arg open
- Limited configurable preferences in save_preferences
- Moved (error|info)_function strings from $form into environment variables
- Converted opens of $form->{IN} to 3-arg open in form printing
- User config items are now truncated at first ne
Changelog for LedgerSMB 1.1.1
- Fixed problem with parts_short trigger not being created
- Fixed problem with custom fields functions not being created
- Pg driver is now checked by default.
Changelog for LedgerSMB 1.1.0
Database
- Added add_custom_field and drop_custom_field functions.
-- will be more integrated into API next version
Changelog for LedgerSMB v 1.0.0p1
Changelog for LedgerSMB v 1.0.0p1
- Fixed directory transversal/arbitrary code execution vulnerability.