1.5

Security advisory for CVE-2021-3694 (Cross site scripting)

Submitted by ehu on Fri, 08/20/2021 - 03:13

Read more about Security advisory for CVE-2021-3694 (Cross site scripting)

Reflected cross-site scripting of authenticated users in LedgerSMB

Summary

LedgerSMB does not sufficiently HTML-encode error messages sent to the browser. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure.

Known vulnerable

All of:

Does LedgerSMB support "sub-accounts"?

Submitted by ehu on Thu, 07/30/2020 - 09:50

Yes. LedgerSMB has a mechanism called "Account headings". The headings are the opposite of what Intuit explains about Quickbooks for their subaccount support: Quickbooks splits an account into multiple and aggregates those new accounts into the old one for reporting. To achieve the same in LedgerSMB, you create multiple accounts and one or more headings. LedgerSMB then aggregates the totals of the accounts per heading. The system used by LedgerSMB closely resembles what MYOB describes about their accounts and headers.

Yes.

Read more about Does LedgerSMB support "sub-accounts"?
Log in or register to post comments

Upgrade to LedgerSMB 1.8

Submitted by ehu on Mon, 07/27/2020 - 23:11

Overview

Company database upgrades are supported all the way back from 1.4 directly to 1.8, using the 1.8 software. Company database upgrades from 1.3 and 1.2 are also supported, but due to the different nature of the upgrade process are called "migrations". The important difference being that when doing a migration, a copy of the data is being created in the 1.8 structure, while upgrades adjust the existing structure for 1.8.

Read more about Upgrade to LedgerSMB 1.8
Log in or register to post comments

1.5.30 Released

Submitted by LedgerSMB_Team on Fri, 11/29/2019 - 02:26

The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:

Changelog for 1.5.30

Read more about 1.5.30 Released

1.5.29 Released

Submitted by LedgerSMB_Team on Fri, 11/15/2019 - 10:44

The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:

Changelog for 1.5.29

Fix occasional COGS error on invoice posting (Erik H)
Fix occasional COGS error on invoice reversal posting (Erik H)
Fix failure on first reconciliation report for an account (Erik H)

Erik H is Erik Huelsmann

Read more about 1.5.29 Released

1.5.28 Released

Submitted by LedgerSMB_Team on Sat, 11/02/2019 - 08:25

The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:

Changelog for 1.5.28

Fix invoice screens crashing on manual tax with 0% tax rate (Erik H)
Fix manual tax lines posted on current instead of transaction date (Erik H)
Fix SQL error in reversal of services in AP invoice (Erik H)

Erik H is Erik Huelsmann

Read more about 1.5.28 Released

1.5.27 Released

Submitted by LedgerSMB_Team on Fri, 10/18/2019 - 04:50

The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:

Changelog for 1.5.27

Fix incorrect tax checkmarks in contact screen after save (Erik H)

Erik H is Erik Huelsmann

For installation instructions and system requirements, see
https://github.com/ledgersmb/LedgerSMB/blob/1.5.27/README.md

Read more about 1.5.27 Released

1.5.26 Released

Submitted by LedgerSMB_Team on Sun, 09/29/2019 - 12:25

The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:

Changelog for 1.5.26

Work around unloadable backups being dumped on some PostgreSQL version combinations (Erik H)

Erik H is Erik Huelsmann

For installation instructions and system requirements, see
https://github.com/ledgersmb/LedgerSMB/blob/1.5.26/README.md

Read more about 1.5.26 Released

Upgrade to LedgerSMB 1.7 (from 1.6 or 1.5)

Submitted by ehu on Tue, 08/27/2019 - 12:02

Upgrading tarball installations

There are two steps to upgrading a LedgerSMB 1.5.x/1.6.x to 1.7:

Upgrade the software
Upgrade the company database

The last step must be executed for each company database that's set up.

Read more about Upgrade to LedgerSMB 1.7 (from 1.6 or 1.5)
Log in or register to post comments

1.5.25 Released

Submitted by LedgerSMB_Team on Sun, 08/18/2019 - 13:49

The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:

Changelog for 1.5.25

Fix regression when running in a schema other than 'public' (Erik H)

Erik H is Erik Huelsmann

For installation instructions and system requirements, see
https://github.com/ledgersmb/LedgerSMB/blob/1.5.25/README.md

Read more about 1.5.25 Released

Subscribe to 1.5