DaDaBIK logo

Blog

DaDaBIK 9.4 Monterosso is out

Dear all,
DaDaBIK 9.4 is out!

This version fixes an SQL injection vulnerability which could allow an attacker to execute arbitrary SQL code. While the vulnerability was quite difficult to exploit, we recommend to upgrade: you can find all the details, together with the other issues fixed, in the change log.

There are also new features related to custom buttons and custom pages:

1) It is now possible to set if a custom button must be displayed or not according to a custom function. This is useful if you want, for example, to show a button only for a particular users group (regardless of the permissions they have on the table) or if you want to show a button according to the "state" of a record.

2) It is now possible to add a javascript confirmation dialog to custom buttons.

3) It is now possible (if granular permissons are ON) to set the permissions for a custom page as VIEW: "yes, but don't show in menu".

Again, you can see the complete list of the new features in the change log

As usual, if you are in your free upgrade timeframe, you can request your free copy from the upgrade page.

If you have a DaDaBIK ENTERPRISE/PLATINUM license and you are out of your free upgrade timeframe, you can also get 9.4 by purchasing a maintenance license (€79 / €99): https://dadabik.com/index.php?function=show_upgrade_new

Have a great summer!

Best,

Eugenio Tacchini
DaDaBIK founder

DaDaBIK 9.3 Monterosso is out

Dear all,
DaDaBIK 9.3 is out!

The most important things released with DaDaBIK 9.3 are 1) a bug fix related to pagination and 2) an improvement that will make your DaDaBIK upgrades easier.

The bug fixed
When you displayed a recordset in DaDaBIK and the number of records required pagination (number of records > records per page), it could happen that, if you are browsing, page by page, the recordset, you saw the same record twice and, even if you read all the pages, you didn't see all the records belonging to the recordset. In other words, the "slice" of records you see might not be the one you expected. This could happen if you were NOT sorting the recordset by a unique field (more precisely, a field containing no duplication in the recordset).

Let's make an example: you have 100 customers and you show them in DaDaBIK sorted by city. Let's say you have more than one customer living in Roma. You set records per page to 10 and you click from page 1 to page 10 to see all the customers: it could happen, for example, that you saw TWICE the customer having id 34, living in Roma (in two different pages) and you didn't see the customer having id 88, also living in Roma.
The 100 customers could be the results of a search or not (just table browsing), this doesn't impact on this issue. Please note that even if you don't notice this issue, it may arise under particular circumstances (it depends on the DBMS's query execution plan).
The fix for this bug relies, as many other features in DaDaBIK, on the existence of a primary key in your tables.

The improvement
I know that upgrading DaDaBIK could be annoying if you don't keep track of the config.php parameters that you modified. I am thinking about moving most of the config.php content from the file to the database in the future, but I am still not convinced about this solution so I decided to try a different strategy: starting from DaDaBIK 9.3 you can leave config.php untouched and edit the new config_custom.php file instead, adding there only the parameters you need to set. This should make your upgrades easier: you can just keep your config_custom.php file and replace the config.php file with the one coming with the new release.

There are a few other bugs fixed and improvements; you can find the complete list of changes in the change log

As usual, if you are in your free upgrade timeframe, you can request your free copy from the upgrade page. If you have a DaDaBIK ENTERPRISE/PLATINUM license and you are out of your free upgrade timeframe, you can also get DaDaBIK 9.3 by purchasing a maintenance license (€79 / €99).

Best,

Eugenio Tacchini
DaDaBIK founder

DaDaBIK 9.2.2 Monterosso is out

Dear all,
DaDaBIK 9.2.2 is out!

This is mainly a maintenance release, fixing a few bugs and adding a little new feature.

A few words about two of the bugs fixed:

  • DaDaBIK produced an "Attack 07 detected" and / or an "Attack 08 detected" during chart generation if one or more field names contained capital letters. Fixed.


  • If you changed the order of the fields in your database schema and then (without or without adding new fields to the table) you used the "Add Fields" function (DB Synchro), you lost your form configuration settings for one or more fields of the table. Fixed.


You can find the complete list of changes in the change log

As usual, if you are in your free upgrade timeframe, you can request your free copy from the upgrade page. If you have a DaDaBIK ENTERPRISE/PLATINUM license and you are out of your free upgrade timeframe, you can also get DaDaBIK 9.2.2 by purchasing a maintenance license (€65 / €85).

Best,

Eugenio Tacchini
DaDaBIK founder

DaDaBIK 9.2.1 Monterosso is out - Security Alert

Dear all,
the release of DaDaBIK 9.2.1 was not planned but we have discovery some security issues that I wanted to fix quickly; more precisely, we are talking about SQL injection vulnerabilities which could allow an attacker to execute arbitrary SQL code. You can find all the details, together with the other bugs fixed, in the change log.

You are STRONGLY encouraged to upgrade. After upgrade, as explained in the documentation, change the parameter $dadabik_session_name in config.php using a name you haven't used in the past.


Best,

Eugenio Tacchini
DaDaBIK founder

DaDaBIK 9.2 is out and now also supports Microsoft SQL Server!

Dear all,
I am glad to announce that the new DaDaBIK 9.2 Monterosso is out. This release provides some bug fixes and two great improvements.

You can buy your license here.

As usual, if you are in your free upgrade timeframe, you can request your free copy from the upgrade page. If you have a DaDaBIK ENTERPRISE/PLATINUM license and you are out of your free upgrade timeframe, you can also get DaDaBIK 9.2 by purchasing a maintenance license (€65 / €85).

Let's talk about the first new feature: if you use DaDaBIK since long time you probably remember that, many years ago, we used to support (together with MySQL and PostgreSQL) Microsoft SQL Server and Oracle databases.

The support of both MS SQL Server and Oracle was then discontinued due to the lack of interests from our users. Times, apparently, has changed: in the last months I have received several emails from customers (or potential customers) who would like to use DaDaBIK with MS SQL Server in a corporate environment so I decided to reintroduce the support for it, also considering that, respect to some years ago, Microsoft has certainly increased its interest for the PHP world.

Microsoft, in fact, released in 2017 a stable pdo_sqlsrv driver, which is the piece of software we rely on to connect DaDaBIK to MS SQL Server from both Windows and Unix-like systems (you can find details about the requirements in the documentation).

The other improvement is a small but powerful new search operator, a long-awaited and heavily-requested feature: the BETWEEN search operator. You can use it with date* an text field types. When you select between from the search operator menu, an additional textbox appears and allows you to specify the interval between two dates, two numbers or even two generic strings. A typical use is for searching in the interval between two dates. For an example, start the demo n.3 (ERP application), choose invoices -> search -> date -> between and then type 2016-12-01 and 2016-12-31.

As usual, you can find the complete list of the fixed bugs and new features in the change log page.

Enjoy! :)

Best,

Eugenio Tacchini
DaDaBIK founder

Page 1 of 211 2 3 4 5 6 7 8 9 10 > >>