Content - Blog

Currently the posts are filtered by: calendar
Reset this filter to see all posts.

Categories: AnnouncementsReleases

todoyu 2.1 released!

16.06.2011PermalinkComments 0

todoyu release 2.1 is ready to download!

The new release of todoyu is out and ready for download! In this version (2.1) we have a lot of new features and bugs fixed. Check out the News-Page to get a quick overview:

todoyu 2.1 News-Page

Download todoyu 2.1

Please get back to me with feedback and questions to adrian@anti-cluttertodoyu.com. Our developer-team, which did a great job to make this powerful new Release ready by today, will answer your posts in the message-board.

Help us develop more cool features and make todoyu even more powerful; we are happy about every donation! Thanks!

 

Categories: ReleasesSecurity

Security bulletin: Cross-site scripting vulnerability in third party library

26.04.2011PermalinkComments 0

A vulnerability has been discovered in the todoyu third party library calendar, which can be exploited by malicious people to conduct cross-site scripting attacks (read the report).
Input passed via the "lang" parameter to lib/js/jscalendar/php/test.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

Although the criticality level is classified as low, please update your todoyu installation to version 2.0.9.

Download the latest version of todoyu

Pages:

Categories

Recent Comments

  • Kay28.09.2011

    Hi Sergey, this varies from system to system, but i added an example into the post.

  • Sergey14.09.2011

    Could you,please, give an example how cron config file should look like?

  • Dominic12.08.2011

    ... then stop eating these little pills your brother gave you...

Stay tuned

RSS 2.0Posts
RSS 2.0Comments

Latest tweets

follow us on
www.twitter.com/todoyu

Social Bookmarks