The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 18.12.14".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 18.12.14" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 18.12.13".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 18.12.13" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 18.12.12".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 18.12.12" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 18.12.11".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 18.12.11" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 18.12.10".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 18.12.10" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 18.12.09".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 18.12.09" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 18.12.08".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 18.12.08" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 18.12.07".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 18.12.07" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 18.12.06".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 18.12.06" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 18.12.05".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 18.12.05" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 18.12.04".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 18.12.04" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 18.12.03".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 18.12.03" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 18.12.02".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 18.12.02" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 18.12.01".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 18.12.01" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 17.12.08".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 17.12.08" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 17.12.06".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 17.12.06" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 17.12.05".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 17.12.05" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 17.12.04".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 17.12.04" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 17.12.03".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 17.12.03" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 17.12.01".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 17.12.01" is the
Severity:
Important
Vendor:
The Apache Software Foundation
Versions Affected:
OFBiz 16.11.01 to 16.11.07
Description:
Data sent with "contentId" to "/control/stream" is not sanitized, allowing
XSS attacks.
Mitigation:
Upgrade to 17.12.01 or manually apply the commits at OFBIZ-10753
Severity:
Minor
Vendor:
The Apache Software Foundation
Versions Affected:
Apache OFBiz 16.11.01 to 16.11.06
Description:
an unauthenticated user could get access to information of some backend
screens by invoking setSessionLocale.
Mitigation:
Upgrade to 16.11.07
Credit:
This issue was
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 16.11.07".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 16.11.07" is the
Severity:
Important
Vendor:
The Apache Software Foundation
Versions Affected:
OFBiz 16.11.01 to 16.11.05
An RCE is possible by entering Freemarker markup in an OFBiz Form Widget
textarea field when encoding has been disabled on such a field. This was
the case for the Customer Request "story"
Severity:
Important
Vendor:
The Apache Software Foundation
Versions Affected:
OFBiz 16.11.01 to 16.11.05
Description:
The "Blog", "Forum", "Contact Us" screens of the template "ecommerce"
application bundled in Apache OFBiz are weak to Stored XSS attacks.
Mitigation:
Upgrade to 16.11.06
or
Severity:
Important
Vendor:
The Apache Software Foundation
Versions Affected:
OFBiz 16.11.01 to 16.11.05
Description:
The java.io.ObjectInputStream is known to cause Java serialisation issues.
This issue here is exposed by the "webtools/control/httpService" URL,
and uses Java deserialization to
Severity:
Important
Vendor:
The Apache Software Foundation
Versions Affected:
OFBiz 16.11.01 to 16.11.05
Description:
The OFBiz HTTP engine (org.apache.ofbiz.service.engine.HttpEngine.java)
handles requests for HTTP services via the /webtools/control/httpService
endpoint. This service takes
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 16.11.06".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 16.11.06" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 16.11.05".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 16.11.05" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 16.11.04".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 16.11.04" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 16.11.03".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 16.11.03" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 16.11.02".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 16.11.02" is the
Vendor:
The Apache Software Foundation
Versions Affected:
OFBiz 13.07.*
OFBiz 12.04.*
OFBiz 11.04.*
Description:
By manipulating the URL parameter externalLoginKey, a malicious, logged in
user could pass valid Freemarker directives to the Template Engine that are
reflected on the webpage; a
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 16.11.01".
Apache OFBiz® is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 16.11.01" is the
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 13.07.03".
Apache OFBiz™ is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 13.07.03" is a bug
The Apache OFBiz community is pleased to announce the new release "Apache
OFBiz 12.04.06".
Apache OFBiz™ is an open source product for the automation of enterprise
processes that includes framework components and business applications.
http://ofbiz.apache.org/
"Apache OFBiz 12.04.06" is a bug
The Apache OFBiz community is pleased to announce the new release Apache OFBiz
13.07.02.
Apache OFBiz™ is an open source product for the automation of enterprise
processes that includes framework components and business applications for ERP
(Enterprise Resource Planning), CRM (Customer
The Apache OFBiz community is pleased to announce the release of Apache OFBiz
13.07.01.
Apache OFBiz™ is an open source product for the automation of enterprise
processes that includes framework components and business applications:
http://ofbiz.apache.org/
Apache OFBiz 13.07.01 is the first
The Apache OFBiz community is pleased to announce the new release Apache OFBiz
11.04.06.
Apache OFBiz™ is an open source product for the automation of enterprise
processes that includes framework components and business applications for ERP
(Enterprise Resource Planning), CRM (Customer
The Apache OFBiz community is pleased to announce the new release Apache OFBiz
12.04.05.
Apache OFBiz™ is an open source product for the automation of enterprise
processes that includes framework components and business applications for ERP
(Enterprise Resource Planning), CRM (Customer
The Apache OFBiz community is pleased to announce the new release Apache OFBiz
12.04.04.
Apache OFBiz is an open source enterprise automation software project (ERP,
CRM, E-Business / E-Commerce, MRP, SCM, CMMS/EAM...):
http://ofbiz.apache.org/
Apache OFBiz 12.04.04 is a bug fix release for
The Apache OFBiz community is pleased to announce the new release Apache OFBiz
12.04.03.
Apache OFBiz is an open source enterprise automation software project (ERP,
CRM, E-Business / E-Commerce, MRP, SCM, CMMS/EAM...):
http://ofbiz.apache.org/
Apache OFBiz 12.04.03 is a bug fix release for
The Apache OFBiz community is pleased to announce the new release Apache OFBiz
10.04.06.
Apache OFBiz is an open source enterprise automation software project (ERP,
CRM, E-Business / E-Commerce, MRP, SCM, CMMS/EAM...):
http://ofbiz.apache.org/
Apache OFBiz 10.04.06 is the last bug fix release
CVE-2013-2137 - Apache OFBiz XSS vulnerability in the View Log screen of the
Webtools application
Vendor:
The Apache Software Foundation
Versions Affected:
Apache OFBiz 10.04.01 to 10.04.05
Apache OFBiz 11.04.01 to 11.04.02
Apache OFBiz 12.04.01
Description:
XSS vulnerability in the View Log
CVE-2013-2250 - Apache OFBiz Nested expression evaluation allows remote users
to execute arbitrary UEL functions in OFBiz
Vendor:
The Apache Software Foundation
Versions Affected:
Apache OFBiz 10.04.01 to 10.04.05
Apache OFBiz 11.04.01 to 11.04.02
Apache OFBiz 12.04.01
Description:
Parameter
The Apache OFBiz community is pleased to announce the new release Apache OFBiz
11.04.03.
Apache OFBiz is an open source enterprise automation software project (ERP,
CRM, E-Business / E-Commerce, MRP, SCM, CMMS/EAM...):
http://ofbiz.apache.org/
Apache OFBiz 11.04.03 is a bug fix release for
The Apache OFBiz community is pleased to announce the new release Apache OFBiz
12.04.01.
Apache OFBiz is an open source enterprise automation software project (ERP,
CRM, E-Business / E-Commerce, MRP, SCM, CMMS/EAM...):
http://ofbiz.apache.org/
Apache OFBiz 12.04.01 is the first release of the
The Apache OFBiz community is pleased to announce the new release Apache OFBiz
10.04.05.
Apache OFBiz is an open source enterprise automation software project (ERP,
CRM, E-Business / E-Commerce, MRP, SCM, CMMS/EAM...):
http://ofbiz.apache.org/
Apache OFBiz 10.04.05 is a bug fix release for
The Apache OFBiz community is pleased to announce the new release Apache OFBiz
11.04.01.
Apache OFBiz is an open source enterprise automation software project (ERP,
CRM, E-Business / E-Commerce, MRP, SCM, CMMS/EAM...).
Apache OFBiz 11.04.01 is the first release of the 11.04 series and contains
The Apache OFBiz community is pleased to announce the new release Apache OFBiz
10.04.03.
Apache OFBiz is an open source enterprise automation software project (ERP,
CRM, E-Business / E-Commerce, MRP, SCM, CMMS/EAM...):
http://ofbiz.apache.org/
Apache OFBiz 10.04.03 is a bug fix release for
The Apache OFBiz community is pleased to announce the release Apache OFBiz
10.04.02.
Apache OFBiz is an open source enterprise automation software project (ERP,
CRM, E-Business / E-Commerce, MRP, SCM, CMMS/EAM...):
http://ofbiz.apache.org/
Apache OFBiz 10.04.02 is a bug fix release for the
/download.html
Kind regards,
Jacopo Cappellato
signature.asc
Description: Message signed with OpenPGP using GPGMail
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
The Apache Open For Business Project (Apache OFBiz) releases a new version of
its software package.
On the 19th of January, 2011 the Apache OFBiz community released a new version
of its software package: Apache OFBiz 10.04. This new version
53 matches
Mail list logo