phpRechnung - ChangeLog

03.05.2018 - Changes in phpRechnung 1.6.6

There are no new features in this release; only small corrections,
so phpRechnung should work with php 7 as well.

06.10.2015 - Changes in phpRechnung 1.6.5

This is a Security Bugfix-Only-Release.

A security issue affects the following phpRechnung releases:

phpRechnung <= 1.6.4

It is recommendend to update your phpRechnung <= 1.6.4 to version 1.6.5 as soon as possible.

JVN#02671769 Link: https://jvn.jp/en/jp/JVN02671769/
CVE-2015-5648 Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5648

list.php of phpRechnung contains a SQL injection (CWE-89) vulnerability.
An authenticated attacker may obtain or alter information stored in the database.

31.01.2011 - Changes in phpRechnung 1.6.4

- FormatDBNumber has been fixed.

27.01.2011 - Changes in phpRechnung 1.6.3

- Problem creating initial cashbook entry was fixed.

- Simple credit note function was added. You can create invoices with negative total amount.
  By choosing 'bar/cash' as method of payment, cash book will be also automatically updated.

- If PrintCompanyData was disabled the Company Data was also not included by sending invoice as PDF-Attachment. fixed.

- minor bugs were fixed

05.01.2011 - Changes in phpRechnung 1.6.2

This is a Bug fix-Only-Release.

- Last Site Redirection missing query was fixed

- syslog_syslogid_seq was disabled

- minor bugs were fixed

08.12.2010 - Changes in phpRechnung 1.6.1

This is a Security Bugfix-Only-Release.

A security issue affects the following phpRechnung releases:

phpRechnung <= 1.6

There are security vulnerabilities in phpRechnung 1.6 which
allow an unauthorized user to have read access of the data.

It is strongly recommendend to update your phpRechnung <= 1.6 to version 1.6.1 as soon as possible.

03.12.2010 - Changes in phpRechnung 1.6

This is a Security Bugfix-Only-Release.

A security issue affects the following phpRechnung releases:

phpRechnung <= 1.6 RC2

There are multiple security vulnerabilities in phpRechnung 1.6 RC2 which
allow an unauthorized user to take control of the software.

- Cross Site Scripting, manipulation of data

Thanks to Brendan Coles for testing and reporting this security issues.

It is strongly recommendend to update your phpRechnung <= 1.6 RC2 to version 1.6 as soon as possible.

- Several warnings have been fixed

- Improved E-Mail function ( mbstring, PEAR::Mail, Mail_Mime is now required )

- Minor bugs have been fixed

- FPDF was updated to version 1.6