Hi Jyri,
Thanks for your detailed report, it's fixed with
https://issues.apache.org/jira/browse/OFBIZ-10595
So you need to apply a patch if you want to use the last R16 release
HTH
Jacques
Le 03/10/2018 à 15:26, Jyri Sillanpaa a écrit :
Hi Jacques,
Right click on Thunderbird Calendar tab
Yes, it's that. It's a bit dated but should still be OK.
What are your problems exactly?
Jacques
Le 07/10/2018 à 18:58, Wolfgang Paul Rauchholz a écrit :
Do you refer to this link?
https://cwiki.apache.org/confluence/display/OFBIZ/FAQ+-+Tips+-+Tricks+-+Cookbook+-+HowTo#FAQ-Tips-Tricks-Cookboo
Hi Wolfgang,
Please see my answer in the Jira, better to exchange there now
Jacques
Le 08/10/2018 à 09:04, Wolfgang Paul Rauchholz a écrit :
I am happy to help. But, being a non-technical person, I need explanations
in layman terms.
'CommonWorker.getAssociatedStateList' does not tell me anyth
Severity:
Important
Vendor:
The Apache Software Foundation
Versions Affected:
OFBiz 17.12.01
Description:
Apache OFBiz is vulnerable to CSRF attacks
Mitigation:
Upgrade to 17.12.03 or manually apply the commits at OFBIZ-11470
Credit:
Initially known by the OFBiz security team (OFBIZ-1042
Le 07/12/2020 à 10:02, Jacques Le Roux a écrit :
Try removing the file, it should pass
Mmm no, in this case the qrcode is not rendered. We can improve that but not in
your package. Could you please create a Jira?
Jacques
Hi Avijit,
Your message has been moderated, else it would not have reached this Mailing
List.
Please subscribe to the user ML for such questions and then use your email
client.
See why here http://ofbiz.apache.org/mailing-lists.html.
You will get a better support, people can answer you on the
Fixed, the trunk demo is accessible again
Sorry for the quirk
Le 18/12/2020 à 16:18, Jacques Le Roux a écrit :
OK, it's a Shiro version issue, checking that
Exception in thread "main" org.apache.shiro.crypto.CryptoException: Unable to
execute 'doFinal' with cipher instance [javax.crypto.Ciphe
+1
Thanks Swapnil!
Le 29/12/2020 à 06:35, Suraj Khurana a écrit :
Thanks Swapnil for sharing these videos.
--
Best Regards,
Suraj Khurana
Senior Technical Consultant
On Mon, Dec 28, 2020 at 8:19 PM Swapnil M Mane
wrote:
Dear all,
Hope you are doing well.
As we got various queries on how
Severity:
High
Vendor:
The Apache Software Foundation
Versions Affected:
OFBiz versions prior to 17.12.06
Description:
Apache OFBiz has unsafe deserialization prior to 17.12.06.
An unauthenticated attacker can use this vulnerability to successfully take
over Apache OFBiz.
Mitigation:
Upgrade
Severity:
High, possible RCE
Vendor:
The Apache Software Foundation
Versions Affected:
OFBiz versions prior to 17.12.07
Description:
Apache OFBiz has unsafe deserialization prior to 17.12.07 version
An unauthenticated user can perform a RCE attack
Mitigation:
Upgrade to at least 17.12.07
or ap
Severity:
High, possible RCE
Vendor:
The Apache Software Foundation
Versions Affected:
OFBiz versions prior to 17.12.07
Description:
Apache OFBiz has unsafe deserialization prior to 17.12.07 version
Mitigation:
Upgrade to at least 17.12.07
or apply patches at https://issues.apache.org/jira/bro
Severity:
High, possible RCE
Vendor:
The Apache Software Foundation
Versions Affected:
OFBiz versions prior to 17.12.08
Description:
Apache OFBiz has unsafe deserialization prior to 17.12.08 version
Mitigation:
Upgrade to at least 17.12.08
or apply patches at https://issues.apache.org/jira/bro
And if not, at least show OFBiz books, if the ApacheBookStore gets updated
We have some in the learning section at
https://cwiki.apache.org/confluence/display/OFBADMIN/OFBiz+Related+Books#OFBizRelatedBooks-Learning
As mentioned there, those sold by /Packt pay a percentage of the sales back to
th
Hi Amit,
Please don't use the blog to ask your questions in comments but rather use the
user ML see http://ofbiz.apache.org/mailing-lists.html
Thanks
Jacques
Le 07/07/2015 12:32, priv...@ofbiz.apache.org a écrit :
This comment failed validation for these reasons:
Comment has more than 1000
==
CVE-2016-2170: Apache OFBiz information disclosure vulnerability
Severity: Important
Vendor:
The Apache Software Foundation
Versions Affected:
Apache OFBiz 13.07.02 and 13.07.01
Apache OFBiz 12.04.05 and earlier releases in the series (12.04.*)
The uns
Hi Erick,
Please help yourself
https://cwiki.apache.org/confluence/display/OFBENDUSER/Apache+OFBiz+Business+Setup+Guide
Please use rather user ML for such questions, see why here
http://ofbiz.apache.org/mailing-lists.html
You will get a better support and it's more fair to share with everybody
The Apache OFBiz Project Team would like to inform you that OFBiz 17.12.09
is the last release of the 17.12 branch, which has reached its end of life and
won’t be longer officially supported.
https://ofbiz.apache.org/release-notes-17.12.09.html
This announcement takes place on 2022-01-15 and sta
The Apache OFBiz Project Team would like to inform you that OFBiz 17.12.09
is the last release of the 17.12 branch, which has reached its end of life and
won't be longer officially supported.
https://ofbiz.apache.org/release-notes-17.12.09.html
This announcement takes place on 2022-01-21 and sta
18 matches
Mail list logo
