! -> Note
$ -> Affected files
+23-Apr-2008
+! Removed the content of function header2 in pdf_report.inc to a separate file, header2.inc.
+ It will make it easier to design your own document layouts.
+$ /reporting/includes/pdf_report.inc
+ /reporting/includes/header2.inc (new file)
+
+20-Apr-2008 Janusz Dobrowolski
+# Checking uniqueness of company settings, fixed creating database with prefix 0 when none was selected.
+$ /admin/create_coy.php
+! Added missing include_once directives.
+$ /includes/ui/items_cart.inc
+ /includes/ui/ui_lists.inc
+ /includes/ui/ui_view.inc
++ Added ini default_charset unnecessary for planned ajax calls.
+$ /includes/lang/language.inc
+
+19-Apr.2008 Joe Hunt
+# Bug (right to left text was done if price decimals were 3). A test sentense from a while
+ ago wasn't removed.
+$ /reporting/includes/pdf_report.inc
+
+18-Apr-2008 Janusz Dobrowolski
+# Additional checks on provisions and break point entry.
+$ /sales/manage/sales_people.php
+! Modules purchasing, sales and taxes sealed against XSS attacks
+$ /install/save.php
+ /admin/db/maintenance_db.inc
+ /purchasing/includes/db/grn_db.inc
+ /purchasing/includes/db/invoice_items_db.inc
+ /purchasing/includes/db/po_db.inc
+ /purchasing/includes/db/supp_trans_db.inc
+ /purchasing/manage/suppliers.php
+ /sales/includes/db/credit_status_db.inc
+ /sales/includes/db/cust_trans_db.inc
+ /sales/includes/db/cust_trans_details_db.inc
+ /sales/includes/db/sales_order_db.inc
+ /sales/includes/db/sales_types_db.inc
+ /sales/manage/customer_branches.php
+ /sales/manage/customers.php
+ /sales/manage/sales_areas.php
+ /sales/manage/sales_people.php
+ /taxes/db/item_tax_types_db.inc
+ /taxes/db/tax_groups_db.inc
+ /taxes/db/tax_types_db.inc
+
+18-Apr-2008 Joe Hunt
+! Module gl sealed against XSS Attacks
+$ /gl/includes/db/gl_db_accounts.inc
+ /gl/includes/db/gl_db_account_types.inc
+ /gl/includes/db/gl_db_bank_accounts.inc
+ /gl/includes/db/gl_db_bank_trans.inc
+ /gl/includes/db/gl_db_bank_trans_types.inc
+ /gl/includes/db/gl_db_currencies.inc
+ /gl/includes/db/gl_db_trans.inc
+
+18-Apr-2008 Janusz Dobrowolski
+! Modules admin and dimensions sealed against XSS attacks
+$ /admin/payment_terms.php
+ /admin/shipping_companies.php
+ /admin/db/company_db.inc
+ /admin/db/maintenance_db.inc
+ /admin/db/users_db.inc
+ /admin/db/voiding_db.inc
+ /dimensions/includes/dimensions_db.inc
+
+18-Apr-2008 Joe Hunt
+! Modules includes, inventory and manufacturing sealed against XSS attacks
+$ /includes/db/comments_db.inc
+ /includes/db/inventory_db.inc
+ /includes/db/references_db.inc
+ /inventory/includes/db/items_category_db.inc
+ /inventory/includes/db/items_db.inc
+ /inventory/includes/db/items_locations_db.inc
+ /inventory/includes/db/items_units_db.inc
+ /inventory/includes/db/movement_types_db.inc
+ /manufacturing/includes/db/work_centres_db.inc
+ /manufacturing/includes/db/work_orders_db.inc
+ /manufacturing/includes/db/work_orders_quick_db.inc
+ /manufacturing/includes/db/work_order_issues_db.inc
+ /manufacturing/includes/db/work_order_produce_items_db.inc
+
+18-Apr-2008 Janusz Dobrowolski
+! Changed db_escape function to avoid XSS attacks via js db injection
+$ /includes/db/connect_db.inc
+# Database inserts/updates secured against js injection
+$ /admin/db/maintenance_db.inc
+ /gl/includes/db/gl_db_accounts.inc
+ /purchasing/includes/db/po_db.inc
+ /sales/sales_order_entry.php
+ /sales/includes/db/sales_order_db.inc
+
+16-Apr-2008 Joe Hunt
+# Bug in /includes/ui/ui_lists.inc:914. Sql clause was cut.
+$ /includes/ui/ui_lists.inc
+
+09-Apr-2008 Janusz Dobrowolski
+# Fixed number formatting bug in standard cost update.
+$ /inventory/cost_update.php
+
+-------------------- 2,0 Beta - released ----------------------------
+
06-Apr-2008 Joe Hunt
! Changed install.html and update.html to fit the new unstable release 2.0
! Changed demo sql script to fit the 2.0 unstable.
projects / fa-stable.git / blobdiff