Login

llby · 01-28-2010, 07:17 PM

Hi, I was looking for something else, when I found that :

http://www.viruslist.com/en/advisories/38237

https://www.sec-consult.com/files/201001...lusion.txt

When is the new version coming up ?

***administrator*** · 01-29-2010, 05:17 AM

We are short staff right now and at this time we don't have a dedicated team yet for LetoDMS we are working on getting a dedicated team for LetoDMS.

We are working on different Projects like RapidCP, CITECRM and ,we are part of Trilex labs so we are all working on different projects.

Thanks

LetoDMS.

**matteo lucarelli** · (This post was last modified: 02-24-2010, 07:58 PM by matteo lucarelli.)

(01-29-2010, 05:17 AM)administrator Wrote: We are short staff right now and at this time we don't have a dedicated team yet for LetoDMS we are working on getting a dedicated team for LetoDMS.

We are working on different Projects like RapidCP, CITECRM and ,we are part of Trilex labs so we are all working on different projects.

Thanks

LetoDMS.

Do this means thet the LetoDMS is a obsolete project?

I'm evaluting the use of leto DMS and this vulnerability seems a seriuos bug but not difficoult to resolve. I can work on it if you don't plan to.

***administrator*** · 02-25-2010, 05:00 AM

Right now we are not planning yet but we are going to add a PHP Developer Lead soon to the project so we can fix bugs

but if you feel like helping us sure go ahead

and if you feel like joining LetoDMS developer team let me know

thanks very much

**matteo lucarelli** · 02-25-2010, 05:28 PM

(02-25-2010, 05:00 AM)administrator Wrote: Right now we are not planning yet but we are going to add a PHP Developer Lead soon to the project so we can fix bugs

but if you feel like helping us sure go ahead

and if you feel like joining LetoDMS developer team let me know

thanks very much

No problem about joining the team. I'm yet working on leto dms.
Let me know how.

Here is the patch for the vulnerability of "lang" and "sesstheme" vars.
I've added a "getStyle" and getLanguages control in lines 179, 183, 194,and 198.

Note: the "referuri" var is still TODO.

***administrator*** · 02-26-2010, 10:48 AM

hey Matteo

thanks for fixing the issue ,

if you have msn please add me so we can chat, thanks

matin47(at)trilexnet.com

thanks

LetoDMS

**matteo lucarelli** · 02-26-2010, 05:34 PM

No MSN, I've written you an e-mail.
I'm doing some heavy work on the code. Let me know how to upload the package (it should be a new release)

***administrator*** · 02-27-2010, 06:52 AM

do you have access to SourceForge?

if you do please provide me your user id so you can upload the SVN on SF thanks very much.

Mat

LetoDMS

**matteo lucarelli** · 03-01-2010, 06:07 PM

My Sourceforge id is "accio7"

let me know

***administrator*** · 03-02-2010, 07:40 AM

hey matteo

i have added you to SF under LetoDMS account .

Thanks

mat

Login
Username:
Password:	Lost Password?
	Remember me