Miva 10.04.00 is now available. This is a bug fix release.
Release notes:
https://docs.miva.com/miva-10-04-00-feature-list
There are important template changes you may need to make to your website. The template changes can be found here: https://github.com/mivaecommerce/rea...ne/15?closed=1
Bugs Fixed
Release notes:
https://docs.miva.com/miva-10-04-00-feature-list
There are important template changes you may need to make to your website. The template changes can be found here: https://github.com/mivaecommerce/rea...ne/15?closed=1
Bugs Fixed
Bug ID | Component | Description |
MM-11602 | Administrative Interface | Order Processing, edit order, changing the order contents no longer automatically updates the shipping rate. |
MM-11666 | Administrative Interface | Order Processing > Recalculate Shipping Dialog: Trademark Symbol is being displayed as '®' |
MM-11670 | Affiliates | Processed By, Created By, and Voided By usernames are output unencoded |
MM-11678 | Core JSON | Quoted shipping is not displayed in the Order Recalculate Shipping dialog |
MM-11803 | Core JSON | Recalculating shipping charges fails to properly increment / decrement shipping module reference counts |
MM-11784 | Core Runtime | Insecure direct object reference allows customer addresses to be modified by unauthenticated customers |
MM-11671 | CSSUI cssui_default_fw | Affiliate code is output unencoded |
MM-11672 | Module: purchaseorder | XSS in Purchase Order/Terms |
MM-11665 | Module: quote | Manage Quotes > Overlay / Calculate Shipping Dialog: Trademark Symbol is being displayed as '®' |
MM-11676 | Module: quote | Quoted shipping using a module other than quote results in a negative discount and adjustment item |
MM-11624 | Module: templatefeed | Multitext custom field values are no longer properly CSV encoded |
MM-11805 | Provisioning | PRV_Order_Calculate_Charges fails to properly increment / decrement shipping module reference counts |
SHDWS-114 | Shadows | Multiple places output "invalid_credentials" unencoded - Template Changes Required |
SHDWS-115 | Shadows | Bask "Undo" link is susceptible to XSS - Template Changes Required |