GiveWP
Security
- Protect against CSRF and DOS attacks against the donation stats exporter
- Protect against XSS attacks for the currency endpoint
Fixes
- Styling corrections for the donation, donor, and form admin lists
- Selecting a specific donation when previewing an email no longer throws an error
- Renewal reminder emails are once again being sent
- Prevent a 400 error from occurring in Stripe webhooks
- Anonymous donations are working properly again for subscriptions
Features
- Exporting donors now supports limiting by their donation date — useful for getting donors who gave in the last year
Tweaks
- the new Gateway API now supports recurring under the hood
- donors are now passed to the give_donors_column_query_data hook (thanks Genevieve!)
Security
- Updated some internal dependencies that had security fixes
- Better protection against invalid dates when exporting donation statistics
- Prevent overreach hack when using the exporters
Fixes
- For some folks a really old migration got stuck, and now it's unstuck
- Summary Heading for the classic Form field displays as it should
- The "Display Header" setting for Classic Form shows/hides the corresponding settings
- Made the default Form Grid colors a bit nicer
- Some of our greens weren't the right GiveWP green. All greens have been made right
- Cleaned up some PHP warnings in the Donor Wall caused by other add-ons
- Put the donation date back in on the Donor Wall
- Donation links weren't working on sub-directory WordPress installs on the Donation List table, now they do
- Required fields on the Multi-Step form now have an asterisk to help communicate to the donor
- Resolved a styling conflict introduce by the updated Form Grid on the Goal shortcode and Legacy template
- Improved some grammar and wording in our PayPal instructions
- Updated the PayPal logo to their latest and greatest
- Improved translations on the Donor Wall
- Updated the currency symbol for LKR (thanks pxydigital!)
- Donations made with 0-decimals now display properly on the Donor Wall
- Form goal settings are better reflected on the Form Grid
Fixes
- Resolved a "sort buffer" error on MySQL 5.7 and older
- Added and corrected some missing translations
Features
- Fresh new look for the Donor Wall block and shortcode!
- Form Grid looks has a great new look and more visual options!
Tweaks
- The new Gateway API now uses he new Models
- All failed queries are now logged with extra data to troubleshoot
- Some minor visual improvements on the Logs admin page
Security
- Remove an unused donor wall endpoint that made donor wall data too easy to access
- Donors can no longer immediately access the Donor Dashboard without authentication
- Further tightening of XSS protection per WordPress security guidelines
- Tighten up file exposure to GiveWP Managers in the Exporter
Fixes
- Prevent a notice and database error on fresh installs
- Cleared up some notices that logging was causing
- Admin notices no longer scrunch all weird-like up at the top of the page
- Further compatibility fixes for PHP 8.1
- Text aligns better for offline donations in the form
- Stripe gracefully ignores events that come in from another platform
- Brought back accidentally removed income goal stat filters. Thanks sc0ttkclark!
- Make sure that all donation errors are caught and gracefully handled to inform the donor
- Renewals now display the correct payment type in the admin donations list
- Checkboxes (also created via Form Field Manager) no longer require being checked when conditionally hidden
Security
- Donors are no longer able to view the Donor Dashboard for the email they donated in without logging in
- Added additional URL escaping around the codebase to protect against XSS attacks
Fixes
- Subscriptions can now be changed again by donors using the legacy subscriptions shortcode
Fixes
- Corrected an issue where admin notices were displaying strangely
- Removed the "Switch to New View" button that would show up in strange admin places when switched to the legacy donor or donation lists
Features
- Refreshed the donor and donation list screens in the admin
- Significant improvements to the donor wall and form grid blocks
Tweaks
- Optimized deleting a donation and all of its meta
- Many under-the-hood improvements Gateway API
- Updated Romanian currency symbol to RON
- Logging system has built-in checks to redact sensitive information
Fixes
- Resolved a 3D Secure issue with PayPal Donations
- Tags now work properly in the Offline Donations content
- Improved error handling if an error occurs with PayPal Donations
- Viewing a receipt in the legacy donation history page now works
- Prevent a "donation_decimals" notice when adding and updating forms
- Percentage goals display properly on the form list
- The correct donation form title is shown on the Stripe checkout page
- Donor Wall can no longer be accessed outside of the website
- Equal operator for conditional fields works again (also affects Form Field Manager)
- Improved Multi-Step content to provide a default and avoid confusion
- Clicking the main "Donations" menu item goes to the forms list instead of making a new form
- Corrected PayPal Donations design when used in Classic template
Fixes
- Corrected an issue with our javascript translations
Fixes
- Resolved a regression in 2.19.6 that broke the Stripe Checkout gateway — please update immediately
Tweaks
- Click in the background when viewing a form in the Form Grid now closes the form
Fixes
- Significant improvements to making GiveWP translatable, especially the Donor Dashboard and other JavaScript
- Forms were not able to be deleted if Recurring wasn't installed, but now they can be!
- Sensitive information was being stored in the logs in some cases. The information will no longer be stored and logged information was removed.
- Some PayPal donations were stuck in "processing" status, but now they are properly marked "complete"
- Transaction ID wasn't being stored for Stripe donations using 3D Secure. Now it's stored and the missing ID's were recovered.
- The Form Grid now displays the excerpt properly on the Multi-Step form
- The Donor Wall and Form Grid blocks now look as they should in the block-editor
