|
ol'bookmarkson line bookmarks manager |
| Main page Screenshots Demo Download/CVS |
On-line demoAn online-demo of v.0.7.4 is available with several logins:
As several people can try online-demo and modify parameters in theses accounts, you may notice strange behavior (bookmarks desepearing, categories renamed...) Don't be afraid! We aren't responsible for any offensive content! Note: Some of the bookmarks in the 'qwerty' account have gibberish names. This is a problem in the person's bookmarks.html we found on the 'net. Ol'bookmarks will handle all characters just fine. |
Current version: 0.7.5Last news:0.7.5 released(Cyril Bellot on Thu, 24 May 2007 20:41:42 GMT) This is a security fix release. You are greatly encouraged to upgrade any prior release to this one. Security issues (Cyril Bellot on Tue, 22 May 2007 21:50:19 GMT) Security issues have been found related to ol'bookmarks. One of them is a SQL injection in the public part (if you have allowed public view of the bookmarks) and allows to retrieve encrypted passwords. They have to be cracked to be used (which is possible considering the light encryption used). This issue is going to be corrected ASAP. The other one is a weakness of variables testing if you run ol'bookmarks on a system with register_globals=ON. You are greatly encouraged to set register_globals=OFF on the ol'bookmarks part (at least). Check php_flag in .htaccess in the apache doc if this is what you use. Back! (Cyril Bellot on Sat, 03 Mar 2007 15:06:48 GMT) I am back again on this project after a long long time... I will try to start fixing the few bugs that have been submited. 0.7.4 released (Cyril Bellot on Sun, 09 Feb 2003 18:30:08 GMT) Development continues! Flexible multi-user support, several bugfixes and improvements. 0.7.3 was a bugfix release for postgresql users. More... |
