1.6

How do I restore my data?

Submitted by ehu on Mon, 05/13/2013 - 13:04

Assuming you have followed the How Do I Backup My Data instructions, you can restore your database as follows...

Note LedgerSMB versions prior to version 1.9.16 did not support PostgreSQL 14 or higher due to a backward incompatible change in PostgreSQL 14.

Read more about How do I restore my data?
Log in or register to post comments

How do I backup my data?

Submitted by Anonymous (not verified) on Tue, 11/29/2011 - 19:44

Log in to the the 'setup.pl' administrative interface, using your ledgersmb database admin user (usually "lsmb_dbadmin" or "postgres"). The default address for setup.pl is http://localhost/ledgersmb/setup.pl.

There are 2 buttons:

Backup database (parts, customers, accounting records, etc)
Backup roles (your login accounts and rights)

One creates a backup of the content of your database. The other creates a backup of the roles.

Read more about How do I backup my data?
1 comment
Log in or register to post comments

Upgrade to LedgerSMB 1.11 (from 1.10 through 1.4)

Submitted by ehu on Sun, 10/01/2023 - 12:15

Upgrading tarball installations

There are two steps to upgrading a LedgerSMB 1.4.x - 1.10.x to 1.11:

Upgrade the software
Upgrade the company database

The last step must be executed for each company database that's set up.

Read more about Upgrade to LedgerSMB 1.11 (from 1.10 through 1.4)
Log in or register to post comments

Security advisory for CVE-2021-3731 (Clickjacking)

Submitted by ehu on Fri, 08/20/2021 - 14:22

Read more about Security advisory for CVE-2021-3731 (Clickjacking)

Insufficient protection against 'clickjacking'

Summary

LedgerSMB does not sufficiently guard against being wrapped by
other sites, making it vulnerable to 'clickjacking. This allows
an attacker to trick a targetted user to execute unintended actions.

Known vulnerable

All of:

Security advisory for CVE-2021-3693 (Cross site scripting)

Submitted by ehu on Fri, 08/20/2021 - 03:14

Read more about Security advisory for CVE-2021-3693 (Cross site scripting)

DOM cross-site scripting of authenticated users in LedgerSMB

Summary

LedgerSMB does not check the origin of HTML fragments merged into the browser's DOM. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure.

Known vulnerable

All of:

- 1.5.0 upto 1.5.30 (including)
- 1.6.0 upto 1.6.33 (including)
- 1.7.0 upto 1.7.32 (including)
- 1.8.0 upto 1.8.17 (including)

Known fixed

- 1.7.33
- 1.8.18

Security advisory for CVE-2021-3694 (Cross site scripting)

Submitted by ehu on Fri, 08/20/2021 - 03:13

Read more about Security advisory for CVE-2021-3694 (Cross site scripting)

Reflected cross-site scripting of authenticated users in LedgerSMB

Summary

LedgerSMB does not sufficiently HTML-encode error messages sent to the browser. By sending a specially crafted URL to an authenticated user, this flaw can be abused for remote code execution and information disclosure.

Known vulnerable

All of:

1.6.33 Released

Submitted by LedgerSMB_Team on Thu, 06/03/2021 - 11:38

The LedgerSMB development team is happy to announce yet another new version of its open source ERP and accounting application. This release contains the following fixes and improvements: Changelog for 1.6.33 * Follow-up (fix) to upgrades blocked by files attached to transactions (Erik H) Erik H is Erik Huelsmann For installation instructions and system requirements, see https://github.com/ledgersmb/LedgerSMB/blob/1.6.33/README.md The release can be downloaded from our download site at

Read more about 1.6.33 Released

1.6.32 Released

Submitted by ehu on Sat, 05/29/2021 - 12:39

The LedgerSMB development team is happy to announce yet another new version of its open source ERP and accounting application. This release will be the last one in the 1.6 release line as it will hit end-of-life next week*; it contains the following fixes and improvements: Changelog for 1.6.32 * Update welcome.html and README, removing FreeNode and updating Element (Erik H) * Fix double-quoting values in GL transaction 'notes' and 'description' (Erik H) * Fix GL transaction after file attachment showing up empty (Erik H)

Read more about 1.6.32 Released

1.6.31 Released

Submitted by LedgerSMB_Team on Sun, 05/02/2021 - 10:28

The LedgerSMB development team is happy to announce yet another new version of its open source ERP and accounting application. This release contains the following fixes and improvements: Changelog for 1.6.31 * Improve upgrades in light of files attached to transactions (Erik H, #5405) Erik H is Erik Huelsmann For installation instructions and system requirements, see https://github.com/ledgersmb/LedgerSMB/blob/1.6.31/README.md The release can be downloaded from our download site at

Read more about 1.6.31 Released

1.6.30 Released

Submitted by LedgerSMB_Team on Sun, 03/21/2021 - 05:13

The LedgerSMB development team is happy to announce yet another new version of its open source ERP and accounting application. This release contains the following fixes and improvements: Changelog for 1.6.30 * Fix Number not updated by 'Save as New' on order and quote (Erik H, #5356) * Performance improvements through added database indexes (Erik H) Erik H is Erik Huelsmann For installation instructions and system requirements, see https://github.com/ledgersmb/LedgerSMB/blob/1.6.30/README.md

Read more about 1.6.30 Released

Subscribe to 1.6