GiveWP
Security
- Added additional protection against serialized data in the option-based donation form request (CVE-2024-9634)
Security
- Added additional validation to the donor title field, further protecting the option-based donation form request
Tweaks
- Updated the visual builder header description field to use the rich text editor
- Updated the strings in the form builder onboarding buttons to be translatable (Open source submission by @DAnn2012)
- Updated strings in give settings to be translatable (Open source submission by @DAnn2012)
- Removed defaultProps in favor of ES6 default parameters for React 19 compatibility
Security
- Added additional prevention for serialized data in the option-based donation form request
- Added additional security measures to the legacy donor list table request (CVE-2024-9130)
Fixes
- Resolved a styling issue with some text fields not respecting error border styling
- Resolved a styling issue with the anonymous block for WP 6.6 compatibility
Security
- Added additional protection to the option-based donation form request (CVE-2024-8353)
Features
- Added support for form taxonomy tags and categories in the visual form builder settings
- Added a setting to the visual form builder to enable redirecting to an individual donation confirmation page
Tweaks
- Multi-step form designs now scroll to the top of the form on step change
- Added individual form migration links to the donation form list table
- Updated various strings throughout GiveWP to be translatable (Open-source contribution by @DAnn2012)
Security
- Resolved security issues related to file paths and permissions (CVE-2024-6551)
- Resolved security issue related to the PayPal disconnect button
Fixes
- Added prevention of subscription renewals with gateway transaction IDs already used previously
- Resolved an issue where the donation form list table and form grid not loading properly on sites with a large number of forms and donations
- Resolved an issue with the form grid not showing header images and link previews
- Resolved an issue with the subscription payment failed email not saving the supported gateways information
Fixes
- Resolved an issue with the Akismet integration preventing form submissions when settings are not yet configured
Features
- Added Akismet integration support to forms using the visual form builder
- Updated the onboarding wizard to create a new form with the visual form builder
Tweaks
- Updated the "Add Form" buttons to use the visual form builder by default
Fixes
- Resolved an issue with Give Subscribers accessing their donor dashboard history
Security
- Added additional security measures to the option-based donation form and the donor dashboard
Fixes
- Resolved an error with the give_totals shortcode when using multiple form IDs
Tweaks
- Updated the visual donation form builder with various UI design improvements
- Updated the form builder design tab preview to be more responsive
- Improved the design of single active gateways on forms
- Improved the login block design
- Improved the Terms & Conditions block UI
- Improved the donate button hover state & secure donation tag
- Improved the donor title prefix setting styles
- Improved the checkbox style for form builder Build & Design screens
- Improved the Consent block by removing "Link Text" option when "Show terms in form" display type is selected
- Improved the File Upload field interactivity to limit the button scope
Fixes
- Resolved an issue with the drag and drop block placement in the form builder
- Resolved an issue where the Give Goal and Multi-Form Goal blocks and shortcodes were displaying the wrong donation amount
- Resolved an issue when exporting donations that use Razorpay gateway
- Resolved an issue in the form builder where recurring donations descriptions were not always matching frequency selection
- Resolved an issue with custom donor columns in csv exports and revive filter give_export_donors_get_default_columns
Security
- Resolved various security issues related to user permissions