IPS IPS Community Suite 4.7.19 Nulled

This is a security release and we recommend all clients upgrade as soon as possible.

Released 08/06/2024

Key Changes​

This is our May maintenance release.
This release also improves bruteforce detection for logins and updates to local Stripe payment methods (such as iDEAL, Sofort, Giropay, Bancontact).

Additional Information​

Core

• Added a maximum recommended PHP version warning.
• Removed the club join button from the clubs rules page.
• Improved the club overview and member page to include a page title.
• Improved the handling of the custom upgrade page to prevent errors.
• Improved bruteforce login protection across login attempts for multiple accounts.
• Fixed an issue on the profile where the solutions section would return an error if there's no class which utilizes solutions.
• Fixed alignment of club names in cover photos.
• Fixed an issue where embedding images could fail.
• Fixed an issue where the s3Delete task may not be enabled.
• Fixed alignment of club names in cover photos.
• Fixed an issue where unapproved content notifications did not use the item read status.
• Fixed an issue where the Device Usage block was displaying incorrectly.
• Fixed an issue where saved Points charts were not showing.
• Fixed an issue where announcements could be created with an end date in the past.
• Fixed an issuer where the timescale for saved charts would not change.
• Fixed an issue where the background task to move/delete content items could fail if the first comment was missing.
• Fixed the hardcoded content type name in the recognized content block.
• Fixed an issue where Moderator Activity charts were using the same date range.
• Fixed an issue where a not available item from the search index could break the daily stream subscriptions mail.

Blogs

• Fixed an issue where the blog seo name wasn't updated when the blog name was changed.
• Fixed an issue where the blog grid view could have a broken pagination.

Commerce

• Fixed an issue where hiding a subscription package in the ACP would throw an error.
• Fixed an issue where duplicate records could be generated for PayPal billing agreements.
• Fixed an issue where some stripe payments were processed twice.
• Fixed an issue where users could upgrade subscription plans at no charge if the expiration date had passed but the purchase was not marked as expired.
• Stripe non-card payments now use the updated version of the Stripe API.

Events

• Fixed an issue where the offset wasn't casted to an integer which could have caused an error on the events overview page.

Forums

• Improved the efficiency when viewing very large archived topics.
• Fixed an issue where forum post counts may not be accurate.
• Fixed an issue where moving the file storage location would not update the file path in the database.

Pages

• Improved the php block code validation while saving the custom blocks content.
• Fixed an issue where club categories did not show in the list when club content is visible throughout the community.
• Fixed an issue where page template names could have a space in the title.
• Fixed an issue where creating new records via REST would fail when revision history is enabled.
• Fixed an issue where deleting a database wouldn't delete all it's categories.
• Fixed an issue where club category menu entries would be shown even if the visitor has no permissions to view the page.
• Fixed an issue where guests couldn't open the club categories page.

Platform

• Fixed an issue where live topic notifications would be shown to for hidden/deleted topics.

Changes affecting third-party developers and designers​

• Removed a MySQL 5.7 specific optimisation for loading content item with lots of comments.

Key Changes​

This is our March maintenance release. This release also includes an important security related fix for Commerce users.
New features:

• Pages Databases in Clubs

Additional Information​

Security

• Resolves an issue in Commerce when tampering with filters could cause errors.

Core

• Improved the efficiency when getting attachments for topic statistics.
• Improved the efficiency of streams when "Content I posted in" is selected.
• Improved the Internal Embeds system to show better error messages for deleted comments & reviews.
• Improved performance of invalidating member sessions when using Redis.
• Added new Moderator actions by action statistics section.
• Fixed Checkbox Overview Statistics not working properly.
• Fixed Moderator Activity statistics table not displaying properly.
• Fixed Warnings over time statistics table not displaying properly.
• Fixed Suspended users over time statistics table not displaying properly.
• Fixed saved charts not displaying data correctly when custom form filters are used.
• Fixed Geographical Charts CSV download not generating properly.
• Fixed an issue where creating an activity stream in the ACP could be missing the clubs filter.
• Fixed an issue where the badge title would be shown as hash value in translated notification emails.
• Fixed an issue where the Posts Per Day Limit was also used for private messages.
• Fixed an issue in the members/warnings endpoint where the POST request could fail while giving a member a warning if warning actions were present.
• Fixed an issue where deleting content may send a delete request to Community Hive, even if it was not enabled.
• Fixed an issue where 3rd party applications with a broken/missing versions file would break the upgrader.
• Fixed an issue where members with a false validation flag would be unable to login.
• Fixed an issue where the Google Maps Autocomplete Integration could display an error message.
• Fixed an issue where not all clubs may be shown on the member profile clubs page.
• Replaced the hardcoded forum_id in the promotion achievement extension.
• Fixed an issue where the Signature Settings page couldn't be accessed to change the signature visibility, without permissions to edit signatures.
• Fixed an issue where new comment notifications posted in anonymous topics were showed as posted by an anonymous member.
• Fixed an issue with the post count value for the Mass Move /Mass Delete action.
• Fixed an issue where delayed deleted content from private clubs isn't shown in the ModCP - Deleted Content area.
• Fixed the default value for the Manifest related manifest_details setting.
• Fixed an issue where the guest group settings couldn't be edited.
• Fixed an issue where YouTube embeds may not lazy-load.
• Fixed an issue where the guest group settings couldn't be edited.
• Fixed an issue where admins with permission to manage stored replies could still not manage these.
• Fixed an issue where the club filters could cause an EX0 error when a not existing field was used.
• Fixed an issue where IP address pruning may not prune all IP addresses.

Blogs

• Fixed an issue where moving a blog entry and sending a moderation alert may cause an error.

Forums

• Added new Solved Topics by Group statistics section.
• Added new Unsolved Topics statistics section.
• Added Top Solvers statistics section.

Courses

• Fixed Enrollments statistics table not displaying status correctly.
• Fixed an issue where sorting the enrollments in the ACP by name would throw an error.
• Fixed a missing language string.
• Fixed not translatable module titles.

Pages

• Added ability for database categories to be added to Clubs.
• Views are now tracked for Pages.
• Fixed an issue where pages were not reindexed after WYSIWYG blocks were added/edited.
• Fixed an issue where record thumbnails which were created via the REST API hadn't the proper thumbnail size.

Platform

• Page views for pages will now be included in analytics reports.
• Fixed an issue with the post before registering flow when content was identified as spam.

Commerce

• Fixed an issue with the subscriptions member filter.
• Fixed a broken default value in the businessAddress.
• Fixed an issue in the commerce categorySidebar template.

Events

• Added organizer, eventAttendanceMode, and VirtualLocation to events JSON_LD.
• Fixed an issue where guests searching for events could see an error.

Downloads

• Fixed an issue in the Downloads File Embed Template where the comment count was shown for files in categories without comments.

Gallery

• Fixed an issue where the vertical image widget wouldn't show the image in Chrome.
• Fixed missing alt texts for event cover images.

Converters

• Improved conversion of attachments in WordPress, Attachments will now be converted inside posts instead of converting to media files.

Changes affecting third-party developers and designers​

• Added new core/admin/global template userLinkWithPhoto.
• Added new tableLangPrefix property for Dynamic Charts.
• Fixed adding new warning reason throwing an error while IN_DEV.
• Fixed an issue where the radio form template would result in an error if no htmlID was set.
• Fixed an issue where clean IN_DEV installations have a broken serviceworker if no manifest details were set.
• Updated HTMLPurifier to 4.17.0.
• Replaced JShrink with JS-minify for better Javascript compatibility.
• Removed jQuery History, removing deprecated 'onunload' handler.

Key Changes​

This is our March maintenance release. This release also includes an important security related fix for Commerce users.

New features:

• Pages Databases in Clubs

Additional Information​

Security

• Resolves an issue in Commerce when tampering with filters could cause errors.

Core

• Improved the efficiency when getting attachments for topic statistics.
• Improved the efficiency of streams when "Content I posted in" is selected.
• Improved the Internal Embeds system to show better error messages for deleted comments & reviews.
• Improved performance of invalidating member sessions when using Redis.
• Added new Moderator actions by action statistics section.
• Fixed Checkbox Overview Statistics not working properly.
• Fixed Moderator Activity statistics table not displaying properly.
• Fixed Warnings over time statistics table not displaying properly.
• Fixed Suspended users over time statistics table not displaying properly.
• Fixed saved charts not displaying data correctly when custom form filters are used.
• Fixed Geographical Charts CSV download not generating properly.
• Fixed an issue where creating an activity stream in the ACP could be missing the clubs filter.
• Fixed an issue where the badge title would be shown as hash value in translated notification emails.
• Fixed an issue where the Posts Per Day Limit was also used for private messages.
• Fixed an issue in the members/warnings endpoint where the POST request could fail while giving a member a warning if warning actions were present.
• Fixed an issue where deleting content may send a delete request to Community Hive, even if it was not enabled.
• Fixed an issue where 3rd party applications with a broken/missing versions file would break the upgrader.
• Fixed an issue where members with a false validation flag would be unable to login.
• Fixed an issue where the Google Maps Autocomplete Integration could display an error message.
• Fixed an issue where not all clubs may be shown on the member profile clubs page.
• Replaced the hardcoded forum_id in the promotion achievement extension.
• Fixed an issue where the Signature Settings page couldn't be accessed to change the signature visibility, without permissions to edit signatures.
• Fixed an issue where new comment notifications posted in anonymous topics were showed as posted by an anonymous member.
• Fixed an issue with the post count value for the Mass Move /Mass Delete action.
• Fixed an issue where delayed deleted content from private clubs isn't shown in the ModCP - Deleted Content area.
• Fixed the default value for the Manifest related manifest_details setting.
• Fixed an issue where the guest group settings couldn't be edited.
• Fixed an issue where YouTube embeds may not lazy-load.
• Fixed an issue where the guest group settings couldn't be edited.
• Fixed an issue where admins with permission to manage stored replies could still not manage these.
• Fixed an issue where the club filters could cause an EX0 error when a not existing field was used.

Blogs

• Fixed an issue where moving a blog entry and sending a moderation alert may cause an error.

Forums

• Added new Solved Topics by Group statistics section.
• Added new Unsolved Topics statistics section.
• Added Top Solvers statistics section.

Courses

• Fixed Enrollments statistics table not displaying status correctly.
• Fixed an issue where sorting the enrollments in the ACP by name would throw an error.
• Fixed a missing language string.
• Fixed not translatable module titles.

Pages

• Added ability for database categories to be added to Clubs.
• Views are now tracked for Pages.
• Fixed an issue where pages were not reindexed after WYSIWYG blocks were added/edited.
• Fixed an issue where record thumbnails which were created via the REST API hadn't the proper thumbnail size.

Platform

• Page views for pages will now be included in analytics reports.
• Fixed an issue with the post before registering flow when content was identified as spam.

Commerce

• Fixed an issue with the subscriptions member filter.
• Fixed a broken default value in the businessAddress.
• Fixed an issue in the commerce categorySidebar template.

Events

• Added organizer, eventAttendanceMode, and VirtualLocation to events JSON_LD.
• Fixed an issue where guests searching for events could see an error.

Downloads

• Fixed an issue in the Downloads File Embed Template where the comment count was shown for files in categories without comments.

Gallery

• Fixed an issue where the vertical image widget wouldn't show the image in Chrome.
• Fixed missing alt texts for event cover images.

Converters

• Improved conversion of attachments in WordPress, Attachments will now be converted inside posts instead of converting to media files.

Changes affecting third-party developers and designers​

• Added new core/admin/global template userLinkWithPhoto.
• Added new tableLangPrefix property for Dynamic Charts.
• Fixed adding new warning reason throwing an error while IN_DEV.
• Fixed an issue where the radio form template would result in an error if no htmlID was set.
• Fixed an issue where clean IN_DEV installations have a broken serviceworker if no manifest details were set.
• Updated HTMLPurifier to 4.17.0.
• Replaced JShrink with JS-minify for better Javascript compatibility.
• Removed jQuery History, removing deprecated 'onunload' handler.

Key Changes​

This is our January maintenance release.

Additional Information​

Core

• Added the embed.php controller to the robots.txt file and added a noindex tag so that search engines don't index the content.
• Added the referring URL to the content of the Contact Form.
• Changed PHP recommendation to 8.1.
• Changed MySQL recommendation to 8.0.13.
• Improved the contact us form UX for guests.
• Improved the queued comments count handling.
• Improved the description for the similar content widget to highlight the different flow when ES is used.
• Improved the thumbImage template to add an alt tag and optimize lazy loading.
• Fixed a design issue on the error page.
• Fixed an issue in the DELETE /core/members/{id}/secgroup/{groupId} REST endpoint, where members could lose a secondary member group.
• Fixed an issue where calling the GraphQL API without a query would throw an EX0 exception.
• Fixed an issue with the x hashtag not being set.
• Fixed an issue where members with a false validation flag would be unable to login.
• Fixed an issue with reliability of logging early in the boot process.
• Fixed an issue with invalid page URL parameters.
• Fixed an issue where profile fields weren't shown on content submissions.
• Fixed a typo in siteSocialLinks template.
• Fixed an issue on the registration form, where one could submit any coppaa/birthday combination.
• Fixed an issue where tags were not showing in alphabetical order (when enabled) for search results.
• Fixed an issue where the webhook payload from Status Posts wasn't properly formatted.
• Fixed Member List Exports not properly formatting Yes / No and Checkbox profile fields.
• Fixed an issue where disabled login handlers would still be accessible in the UCP.
• Fixed an issue where the member webhook payload contained a false value for the allowAdminEmails key.
• Fixed an issue parsing <video> elements with multiple <source> elements when lazy-load is enabled.
• Fixed an issue inthe follower template where we didn't cast the page as integer.
• Fixed an issue where giving cookie consent to the IPS cookies would result in an empty page.
• Fixed an issue where web app icons may be cached by a CDN and show older versions.
• Fixed a regression when copy & pasting files in an editor by reverting a previous fix.
• Deleting a webhook will now also delete the data from core_api_webhook_fires.
• Removed the deprecated twitter_hashtag` setting.
• Removed the profile blocking from the default robots.txt file.
• Fixed an issue where Status Feeds don't update after saving statuses and replies.

Blogs

• Fixed an IN_DEV issue where the Blog Edit form would result in an error.
• Fixed protocol relative URL's showing in Blog RSS Feeds.
• Fixed an issue where the "Content Approval Hint" wasn't shown while creating blog entries.

Courses

• Fixed an issue on the courses quiz form, where images wouldn't be shown.

Events

• Fixed protocol relative URL's showing in Blog RSS Feeds.

Downloads

• Fixed protocol relative URL's showing in Blog RSS Feeds.
• Fixed an issue with the downloads/files/{id}/history endpoint where the update time wouldn't be changed.
• Fixed an issue where the search custom fields form showed a search related field.
• Fixed an issue where the file screenshots were not sorted correctly.

Forums

• Improved the efficiency of the "Time to solved" chart.
• Improved the JSON-LD for Question Topics to show replies as suggested answers.
• Fixed an issue with the fluid view, where invalid forum ids would remain "forever" in the address bar.
• Fixed protocol relative URL's showing in Blog RSS Feeds.
• Fixed 2 faulty canHide permission checks.
• Fixed an issue where links to comments in archived topics would point to the wrong location.

Commerce

• Improved the design on the ACP Support Form to improve the readability of the "GOTO" links.
• Fixed an issue where expired or canceled subscriptions did not always restore the appropriate member groups.
• Fixed an issue where Google/Apple Pay transactions may auto-capture when held by a fraud rule.
• Fixed an issue where the same PayPal transaction could be processed twice.
• Fixed an issue where 3D Secure status may not show correctly on some Stripe transactions.

Pages

• Fixed an issue where the rss import feature skipped the title prefix value.
• Fixed an issue where records created via the REST API or RSS import wouldn't be linked correctly to other items.
• Fixed an issue where page record comments would create posts in archived topics when topic syncing is enabled.
• Fixed an issue with the database filter widget where the custom fields default value was set automatically.
• Fixed an issue where unsetting the "Remember filters" checkbox wouldn't remove the filter cookie.
• Fixed an issue where moving/deleting comments could stop the queue from processing.

Gallery

• Fixed an issue where editing the gallery image details would remove the exif data.
• Fixed an issue where editing the gallery image or video details while the file is still uploading would not save the details.
• Fixed an issue where allowing a user to submit images to an album they do not own may not allow them to submit.

Converters

• Fixed tags not displaying properly when rebuild completes before permissions are set.

Platform

• Improved the un-archiving process for topics when archiving gets disabled.

Changes affecting third-party developers and designers​

• The POST /core/members/{id}/secgroup/{groupId} endpoint will log the changes to the member history.
• Fixed an IN_DEV issue in the checkout form, which was caused by an undefined variable.
• Fixed an INDEV issue where ignoring a member from his hovercard with INDEV mode would show a "CSRF KEY present in the url error".
• The Contact Form will now contain a "contact_referrer" value when the form is submitted. It is up to the calling extensions handleForm() method to determine how to handle this information.
• Performance improvements targeting MySQL 8.
• Changed the method signature for \IPS\Node\Model::setLastComment() and \IPS\Content\Item::resyncLastComment()

Key Changes​

This is our November maintenance release.
Key changes include the removal of the AdminCP Marketplace. Please see our announcement here.

Additional Information​

Core

• Added X share link options.
• Improved the efficiency of sitemap generation.
• Improved the Node Form Helper to include only nodes where a member has permissions to create content for the "Create New" menu.
• Improved performance of clubs.
• Improved pasting images that were copied in Chromium-based browsers.
• Improved the title on the clubs overview page to be different based on the filter.
• Reset state of Account Deletion AdminCP Notification.
• Fixed an issue where moderators with only move permission couldn't see moderation checkboxes.
• Fixed an issue where banned users may show in the mention list if they recently participated.
• Fixed searching specific API endpoints not working fully.
• Fixed an issue where it may be difficult to set custom meta tags on the root page.
• Fixed an issue where it wasn't possible to restrict access to the SEO acp section.
• Fixed Bulk Mail (and other) filters not detected Yes/No and Checkbox Profile Fields correctly.
• Fixed an issue where a blank error message may be shown in some circumstances when testing mail settings.
• Fixed an issue where two messages assumed a gender.
• Fixed reverting templates not taking effect immediately when disk caching is in use.
• Fixed custom Header and Footer theme settings not validating code upon saving.
• Fixed members showing twice in the members list when viewing the list of administrators.
• Fixed acronyms in word expansion unable to be saved in Firefox if the expansion contained quotes.
• Fixed an issue where it wasn't possible to restrict access to the SEO acp section.
• Fixed staff only profile fields showing on search form for non-staff.
• Fixed an issue where it was possible to configure a Reaction based achievements rule for Items that cannot be reacted to.
• Fixed an issue where issuing a warning removing achievement points may cause an SQL error.
• Fixed an issue where the leaderboard area filter would show comments and reviews for all content types, even if they didn't support comments or reviews.
• Fixed an issue where custom staff directory templates weren't shown while creating/editing the staff directory.
• Fixed an issue where some content (topics etc) created as hidden did not show in the condensed activity stream.
• Fixed an issue where synching topics for all content would create topics for items pending deletion.
• Fixed an issue activating Bit.ly in promotion tools.
• Fixed a potential error when issuing a warning due to PHP bug #66545.
• Removed the AdminCP Marketplace.

Forums

• Added a new "Topics with No Replies" list to the Topics statistics section.
• Added a setting for each forum to exclude topics marked as solved that were posted before a specific time.
• Fixed an issue where it was possible to downvote answers even when negative ratings were disabled.
• Fixed an issue where club forums were showing in global forum stats.
• Fixed an issue where empty answers (including image/embed only answers) may cause a json-ld validation error.

Downloads

• Fixed linked files not showing a title on the download prompt when multiple files are available.
• Fixed new versions always requiring approval even if submitter is set to bypass content approval.

Events

• Fixed an issue where copying an event did not honor automatically following content posted.
• Fixed a permission conflict where a user could see a calendar, but not read events, could not see those events in the listing.

Converter

• Added Invision Community merge tools for Calendar and Blog.

Commerce

• Fixed Paid club memberships not able to be renewed if a renewal invoice is already pending.
• Fixed incorrect renewal terms description when manually adding a member to a subscription.

Pages

• Fixed an issue where records may show incorrect posted in badges if forum comment sync is enabled.
• Separated Records per page and Comments per page in database settings.
• Fixed record image not able to be set via REST API.
• Fixed an issue where promoting a topic to the CMS could fail if the target DB had a custom field which was set to be unique.
• Fixed an issue where some field types did not display properly when viewing revisions.

Gallery

• Optimized the ACP Dashboard widget.

Blogs

• Fixed extraneous arrow showing for child blog categories.

Courses

• Fixed an issue where module names were returning all languages simultaneously.
• Fixed an issue where images in course lessons wouldn't load in a lightbox.
• Fixed an issue where long descriptions caused the course image to stretch out on the page.

Platform

• Fix content removed by spam analysis still sending unapproved notifications.

Changes affecting third-party developers and designers​

• Searching specific REST API log endpoints with variables (ex, {id}, {key}, etc.) is limited to the following regex pattern: [a-zA-Z0-9-]+

Key Changes​

This is our September maintenance release.

Key changes include:

• New Spam Prevention Features
• Introducing Community Hive

Additional Information​

Core

• Added the ability to moderate and block new registrations from specific regions.
• Added email verification to Contact Us page.
• Added the ability to moderate or block new registrations using known disposable email addresses.
• Added aliases for x.com embeds.
• Added the ability to manually upgrade Marketplace resources, further updates will need to be obtained from the author instead of the Marketplace.
• Fixed an issue where disabling or removing the Twitter login handler may not remove the Twitter social promote option.
• Fixed an error in the REST API when a member has an invalid primary group.
• Fixed an issue where deleting a node via the API
• Fixed an issue where profanity filters that block words did not work on content titles.
• Fixed an issue where saving too many groups on a member can result in an error.
• Fixed an issue where having many groups can cause an error when updating a users location.
• Fixed an issue where the Who's Online and Active Users widgets will be cached by a guest and shown to everyone.
• Fixed an issue where the default value of a language string may not be correct when entities such as > and < are used.
• Fixed an issue creating new content with specific a specific tag configuration with alphabetic tags enabled.
• Fixed an issue where a profile field with the type "Date" could break the search.
• Fixed an issue with ACP notifications for PII & Deletion requests.
• Fixed an issue where passing null to a text field may cause an error with PHP > 8.1.
• Fixed an issue where lightbox meta titles were not being used.
• Fixed an issue where REST API requests may set an incorrect language.
• Fixed an issue where the move members queue offset was not being applied correctly.
• Fixed an issue where it was possible to trigger a MySQL error by specifying an invalid API page parameter.
• Fixed an issue where the cookie banner may show an error when used by guests.
• Removed an orphan referrals module.
• Removed the Edited By line for anonymous content that was edited by a moderator without the ability to silently edit.
• Disabled responsiveness in the Admin CP > API.

Blog

• Fixed an issue where moving blog entries between blogs can cause its category to be lost.

Courses

• Fixed an issue where the Attachment Permission check could fail.

Commerce

• Fixed an issue where a payment that is declined would show a generic failed error instead of a declined error.
• Fixed an issue where post before register data was not properly accounted for when registering via Commerce.

Forums

• Fixed an issue where a redundant message may show when a closed topic is archived.

Pages

• Fixed an issue where articles set to publish in the future may persist in the unread stream after publishing.
• Fixed an issue where item statistics may show incorrectly when record comments are stored in topics.

Events

• Fixed an issue with searching for an event not working properly.
• Fixed an issue where event search would try to load a map when none are enabled.
• Fixed an issue where the next/prev month navigation links may not work in certain timezones.
• Fixed an issue where the calendar time period links would default to the main calendar when viewing clubs.

Converter

• Fixed an issue where some Pages database language strings may be missing after conversion.

Platform

• Added the missing 'most_views' language string.
• Added post content analysis scanning to detect spam in post content.
• Fixed an issue where live topic creation fails if the Events app is disabled.
• Removed the Marketplace resource restriction on lower plans, custom resources can now be installed.

Key Changes​

This is our July maintenance release.

Additional Information​

Core

• Added some missing acp live search keywords.
• Added ability to disable or redirect PII data requests & account deletion.
• Improved the security of the visual language editor.
• Improved the responsiveness of the buttons in the cookie message.
• Fixed an issue where an extra space can be added to the end of dates in specific locales.
• Fixed an issue where oAuth tokens weren't revoked for banned users.
• Fixed an issue where it was not possible to cancel optional mfa setup.
• Fixed an issue where page output may be broken if a large signature is used.
• Fixed an issue where Edge on Android could be detected as Chrome.
• Fixed an issue where achievements could be abused in private messages.
• Fixed a database error when viewing the moderator control panel.
• Fixed a missing language string in Member History when an account deletion has been cancelled.
• Fixed an issue where it wasn't possible to dismiss an alert if a password change was being forced.
• Fixed an issue where a solved notification may have incorrect wording.
• Fixed an issue where the All / None buttons on chart filters may not work.
• Fixed an issue where images would be restricted to 1200px regardless of the max image dimensions to display setting.
• Fixed an issue where posts from future topics may show in profile content streams.
• Fixed an issue where webhooks may send an empty auth header which can confuse some destination URLs.
• Fixed an issue where saving custom charts failed.
• Fixed an issue where AdminCP notifications emails for PII Requests & Account Deletion may not be sent.
• Fixed an error when using question & answer challenges for captcha with recent PHP versions.
• Fixed an issue where the cookie information page wasn't visible for validating members.
• Fixed an issue where the cookie consent opt-in may not return the visitor to the page they were on.
• Fixed an issue where a specially crafted search query could cause an uncaught exception.
• Fixed an issue where the onboarding wizard may show an error on save.

Pages

• Fixed an instance where an empty ACP error notification may get logged.
• Fixed an issue where large file uploads to Pages media may fail.
• Fixed an issue where a moderator can not edit database records if their group does not have edit permission, however they have moderator permissions to edit globally.

Forums

• Changed og:image on topic view to one image, more than one is not fully compatible with the meta tag editor.
• Fixed an issue where a significantly large number of reactions could cause memory issues in the expanded topic list view.

Events

• Fixed an issue where automated tests may log an error in the admin control panel from a no longer used block of code.

Converter

• Fixed an error caused when merging an Invision Community using letter photos.

Commerce

• Fixed an issue where subscription upgrade/downgrade pricing was not calculated correctly.
• Fixed an issue where making paying with PayPal after a failure caused an exception.
• Fixed Maxmind AdminCP notification missing language string.

Courses

• Fixed an issue in the FrontNavigation extension, where the item was shown without a permission check.
• Fixed an issue where moderators were unable to access ModCP with Courses enabled.

Platform

• Updated the Live Topic conversion notification to link to the new topic.
• Fixed an issue where a host or staff member not in an attendee group could not join

Downloads

• Fixed an issue where responding to reviews did not work.

Changes affecting third-party developers and designers​

• Updated CKEditor to 4.21.0.
• Updated jQuery to 3.7.0.
• Updated jQuery UI to 1.13.2.
• Updated jQuery Migrate to 3.4.1.
• Fixed an array offset error on the spam whitelist form.
• Fixed an issue where temporary cache data wasn't removed from \IPS\Content\Statistics on app uninstall.
• Fixed an issue where the front/table/rows template was missing a check for the \IPS\Node\Statistics trait.
• Removed legacy file loader for Extensions.
• Removed legacy polyfill for IntersectionObserver.

Key Changes​

This is an essential security and maintenance update. Including improvements for our recently release PII & Statistics features.

We recommend not using the visual language editor until you upgrade.

Additional Information​

Core

• Improved the Cookie Consent system based on feedback from our community.
• Fixed some missing language strings in Member History relating to PII / Account deletion requests.
• Fixed some issues with the AdminCP notification for PII requests.
• Fixed an issue where an administrator exporting PII for a member may not contain the members device data.
• Fixed an issue with links in the PII request emails.
• Improved the security of the Visual Language Editor.

Platform

• Fixed an issue with content item analytics.

Changes affecting third-party developers and designers​

• _getEssentialCookies() can now return a wildcard at the end of a cookie name where there may be a different ID on each, i.e. ipbforumpass_*

Deprecations and Removal Announcements​

Please review our deprecation tracker for upcoming deprecations.