use Interop\Container\ContainerInterface;
Released 25/03/2020
Critical Security Vulnerability
Important Security Issue
Important Security Issue
Full disclosure of the security issues addressed in this release will be made at a later date
Issue: 5836 - Two Factor Authentication redirect to User profile
Issue: 8582 - DBManager::convert calls abstract function
Issue: 6676 - Multiple datetime value condition issues in Workflow / Reports
Issue: 7011 - Intial User Login Duplicate Timezone Request / Blank screen
Issue: 8261 - Upgrade Issues - Handling of temp files during Upgrades
Issue: 8483 - Fix function declaration of SugarFieldTime::save()
Special thanks to all who contributed to this release!
Please visit the official website to find the appropriate upgrade package.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com
Released 14/02/2020
CVE: 2020-8803 - Local File Inclusion
CVE: 2020-8801 - PHP Object Injections
CVE: 2020-8800 - Second-Order PHP Object Injections
CVE: 2020-8802 - Bean Manipulation
Issue: 8541 - MySQL Database breaking on special characters
Backward incompatible config changes
Special thanks to Egidio Romano for reporting the security issues addressed in this release!
Please visit the official website to find the appropriate upgrade package.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com
Released 10/02/2020
You may notice when installing SuiteCRM a new panel which allows for the configuration of different collations and type-sets. This is part of our progression towards resolving issues with special characters and emojis. Currently available sets include utf8 and utf8mb4.
Within this release, we have also resolved a few known issues with the upgrade process; however, they will unfortunately not take effect until the next upgrade cycle. Therefore it is vital that if you encounter any problems while installing that you review and follow the recommended process within the SuiteDocs upgrade debugging page which can be found here
If you maintain a CRM utilising container-interop for API extension, you should note that this release may require some small changes to routing as seen below:
Instead of Interop
use Interop\Container\ContainerInterface;
Make use of Psr
use Psr\Container\ContainerInterface;
CVE: CVE-2020-8787 - Bean ID validation strictness
CVE: CVE-2020-8783 - Neutralization of potential vulnerability with use of Special Elements within SQL
CVE: CVE-2020-8784 - Neutralization of potential vulnerability with use of Special Elements within SQL
CVE: CVE-2020-8785 - Neutralization of potential vulnerability with use of Special Elements within SQL
CVE: CVE-2020-8786 - Neutralization of potential vulnerability with use of Special Elements within SQL
PR: 8422 - Issue: 8421 - Fix issue with validation on aos settings
PR: 8395 - Issue: 6000 - Notifications not working when using mssql
PR: 8353 - Issue: 8351 - Datepicker missing in massupdate for custom datetime field type
PR: 8298 - Issue: 8295 - Fix sorting icons showing counterwise
PR: 8205 - Issue: 8180 - Font colour is the same as the search bar bg
PR: 8053 - Issue: 7874 - Unable to use custom _head.tpl file (alternative fix)
PR: 8139 - Issue: 8134 - Logo not in left-hand corner anymore
PR: 8158 - Issue: 8151 - Updating FPEvent unit test to use correct array
PR: 8181 - Issue: 7305 - Scheduled reports execute in the timezone specified
PR: 8188 - Issue: 8183 - Non-group records show on list view if group only access
PR: 8190 - Issue: 8173 - Workflow actions missing in edit and detail view
PR: 8424 - Remove 'buggy version check' from php version checker
PR: 8363 - Adding fix to silent upgrade’s upgrade history save
PR: 8346 - Update links
PR: 8344 - Email1 field now gets populated through API
PR: 8340 - API returns the emailAddress Relationship link
PR: 8322 - Remove Schedulers cron instructions from filter pop-up
PR: 8258 - Fix "!" in pQuery and add tests
PR: 8243 - Clear PHP notice on Home page and improve suitecrm.log message
PR: 8198 - Unit test fixes for 7.10.x
PR: 7832 - V8 API swagger.json
PR: 6709 - Avoid printing js content in CLI commands
PR: 8458 - Fix install layout db options
PR: 8468 - Fix slim api
PR: 8193 - Fixed employees module not appearing in ACL role list
PR: 8326 - Logo upload
PR: 8218 - Issue: 7744 - Remove deprecated functions from utils.php
PR: 8217 - Issue: 7744 - Remove the deprecated load_menu() function in utils.php
PR: 7807 - Issue: 7740 - Replacing the StateChecker with database truncation in tests
PR: 8379 - Deprecate _pp functions
PR: 8378 - Misc code formatting improvements
PR: 8350 - Add tests for splitTime() on TimeDate
PR: 8314 - Fix parameter order for asserts in unit tests
PR: 8300 - Add tests for TimeDate class
PR: 8313 - Add more TimeDate tests
PR: 8299 - Add tests and PHPDocs for return_bytes function
PR: 8296 - A few more little fixes for the formatting in the test suite.
PR: 8283 - Unit test cleanup
PR: 8253 - Remove some old code referencing PHP 5.3
PR: 8252 - Deprecate various utils functions that are unused
PR: 8249 - Add unit tests for is_admin() function
PR: 8236 - Update the Travis Code Coverage job
PR: 8235 - Clean up misc unit tests
PR: 8234 - Add tests for check_php_version
PR: 8216 - Add a PHPDoc comment and test to unencodeMultienum()
PR: 8156 - tests: throw an error in case exit() is called during testing
PR: 8477 - Fix/Avoid WebDriver Timeouts in Travis createModule Tests
PR: 8509 - Fixing typo in seperator/separator change
PR: 8518 - Fix backwards compatibility with seperator/separator css
PR: 7580 - Update export_excel_compatible to work with all Excel versions
PR: 8297 - Add PHPDoc and deprecate unTranslateNum
PR: 8310 - Backport more PHP 7.4 fixes
PR: 8152 - Update html-purifier to 4.12
PR: 8161 - Fix a PHP warning in Meeting.php
Special thanks to Egidio Romano for reporting the security issues addressed in this release!
Special thanks to the following members for their contributions and participation in this release!
Please visit the official website to find the appropriate upgrade package.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com
Released 11/11/2019
CVE: Unassigned - SQL Injection
PR: 8187 - Issue: 8183 - non-group records show on list view if group only access
PR: 8190 - Issue: 8173 - Workflow actions missing in edit and detail view
PR: 8192 - Fixed employees module not appearing in ACL role list
PR: 8207 - Issue: 8203 - Repair Administration section ISSUENAME Google Calendar settings menu option
Please visit the official website to find the appropriate upgrade package.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com
Released 04/11/2019
CVE: CVE-2019-18782 - .htaccess Improvements
CVE: CVE-2019-18785 - API Access Token and Credential fix
CVE: CVE-2019-18784 - Neutralization of potential vulnerability with use of Special Elements within SQL
PR: 7198 - Add Robo API commands
PR: 5464 - Filter email templates on Events
PR: 7829 - Issue: 7828 - Robo tasks for common actions that are performed in Repair Administration module
PR: 7819 - Issue: 7817 - Added option to filter WorkFlows by module name
PR: 7809 - Robo: Add a --filter option to tests:unit for filtering tests
PR: 7808 - Issue: 7621 - Add support for config_override.test.php
PR: 7844 - SuiteP: Add html data tags to allow module and field identification
PR: 7837 - Issue: 7836 - Robo task to compile css in a custom theme
PR: 7834 - Workflow: Properly delete records which are marked as deleted
PR: 8151 - Resolve issue with email templates
PR: 7659 - Icons not rendering properly in Alerts
PR: 7655 - Issue: 7648 - Case Module: Description field not showing after Save and continue
PR: 7650 - 'customMetadate' typo in DashletGeneric.php
PR: 7643 - Issue: 7622 - Make the code:coverage Robo command work outside of CI
PR: 7641 - Issue: 7396 - Update button clears DateTime parameter in Reports Module
PR: 7638 - Issue: 7315 - Adding parameter date field in Reports module causes error in Browser console
PR: 7627 - Update sugar_3.js to fix a MassUpdate undefined error
PR: 7529 - Codacy
PR: 7525 - API Create Relationship via Link
PR: 7515 - Scheduled Reports: Fix report name relation and popup search
PR: 7428 - Issue: 7427 - Show logs lines that was made by anonymous
PR: 7195 - Inspections compatibility
PR: 7193 - Remove Unused Import
PR: 7141 - Type casting
PR: 6765 - Issue: 321 - Hitting enter in the password input saves the user but not the password
PR: 6503 - Add a SAML2 metadata endpoint
PR: 5537 - Issue: 5520 - Do not clear existing attachments when loading a template
PR: 4471 - Update DeleteRelationship.php
PR: 3820 - search_by_module REST API
PR: 7826 - Issue: 2825 - Now we translate the title tag for recently viewed links
PR: 7822 - Issue: 7821 - User name is not aligned in 1200px to 1600px screens
PR: 7818 - InboundEmailTest: Make tests independent to make them work with the state checker
PR: 7816 - Removing an item from subpanel should only require the item edit access right
PR: 7815 - Save email addresses before saving company/person
PR: 7814 - SQL query bug for quote purchase subpanel
PR: 7813 - Issue: 7810 - Pencil present in Top Menu for users with non editing permission
PR: 7802 - Issue: 6830 - Code coverage as a separate stage in CI
PR: 7797 - Issue: 7779 - PHP Fatal error in modules/Connectors
PR: 7783 - Issue: 7780 - Bad css format in Date and Date Range Inputs in search forms
PR: 7782 - Issue: 7781 - Now we can compile SuiteP only one color_scheme
PR: 7777 - Issue: 7784 - Grouping by with xxx_usdollar currency fields
PR: 7774 - EmailMarketing: Add security groups support
PR: 7773 - Make robo test commands fail if tests fail
PR: 7771 - Issue: 7620 - Add dotenv support for the test environment
PR: 7760 - SugarEmail: Fix 'to' field not being filled when the last record doesn’t have an email
PR: 7746 - Issue: 7675 - Add a function to compare properly indices definitions
PR: 7741 - Clean up a bunch of unit tests
PR: 7711 - Issue: 2928 - Clear Zend OPcache when writing files
PR: 7690 - Composerify Zend Lucene
PR: 7906 - Update Gitattributes + codeception.dist.yml
PR: 7904 - Issue: 7903 - Verify if $bean is_subclass_of SugarBean so we can check access
PR: 7900 - Issue: 7869 - Protect against illegal string offset warnings in aow_utils
PR: 7899 - Issue: 7868 - 'Undefined index: leads_id' notices in AOR_Report.php
PR: 7898 - Issue: 7552 - AOR Reports - Mysqli_query failed when execute Report as normal User
PR: 7877 - Issue: 7875 - Wrong render in DateRangeInput using 'Between' Option
PR: 7871 - Issue: 7870 - Improvements in css for date_input and labels in EditView
PR: 7865 - Refixed #7393 without breaking headers for non-pulldown fields
PR: 7866 - Issue: 6535 - Replace contact_xxx in templates also for leads/prospects/users
PR: 7858 - Issue: 6442 - Fix Issue when importing non UTF-8 CSV file
PR: 7857 - Issue: 7848 - Temporarily revert PHP 5.5 from the Travis build
PR: 7855 - Issue: 7613 - Status/State usage causing translation errors
PR: 7841 - Update issue 'Undefined index: docType' PHP notice PR templates to comment on how to include code
PR: 7839 - Issue: 7838 - 'Undefined index: docType' PHP notice
PR: 7833 - SugarFeed: Various fixes for 7.10.19/20 regressions
PR: 7965 - Issue: 7964 - Report Total Field formatting is inconsistent
PR: 7963 - Issue: 7962 - Sending emails with apostrophe in email address
PR: 7957 - Silent upgrade
PR: 7956 - Issue: 7955 - Admin blank screen post upgrade to 7.11.8
PR: 7952 - Update the .gitattributes export-ignore list
PR: 7951 - Issue: 6691 - Typo in key - LBL_ORIGINAL_MESSAGE_SEPERATOR
PR: 7950 - Issue: 7926 - Do not divide by adjustment if it equals 0
PR: 7944 - Issue: 3129 - Use correct Business Hours field name for opening hours check
PR: 7943 - Issue: 7942 - Add bool to eligible fields for merging
PR: 7930 - Typos in audit template metadata
PR: 7929 - Issue: 7928 - Upgrade wizard recommends composer update instead of composer install
PR: 7925 - Enable Delete button in Actions menu
PR: 7913 - Issue: 7912 - Avoid PHP Notices in getVardefs() method
PR: 7910 - Issue: 7885 - Add a SECURITY.md to the repository
PR: 7909 - htaccess
PR: 8039 - Misc improvements to the acceptance tests
PR: 8032 - Issue: 3857 - Retain date properly when saving a stored query
PR: 8031 - Issue: 7758 - Disable Action menu has no effect on menus in subpanel
PR: 8030 - Issue: 7738 - Email Template selection in email module is not working in Edge/IE11
PR: 8029 - Updated mkdir calls to throw RuntimeExceptions
PR: 8028 - Issue: 7874 - Unable to use custom _head.tpl file
PR: 8027 - Issue: 7882 - No 'Server response time' in SuiteP
PR: 8026 - Issue: 8025 - OAuth Keys Fixed a grammatical error in include/templates/Template.php OAuth2 Clients and Tokens icons are missing
PR: 8020 - Fixed a grammatical error in include/templates/Template.php
PR: 8018 - Move RebuildConfig.php from using XTemplate to using Smarty
PR: 8015 - Make the pagination buttons on DetailView pages links.
PR: 8010 - Skip cache building if custom class exists for dashlets
PR: 8009 - Update contributing.md
PR: 7995 - Typos and made it grammatically better
PR: 7994 - Update config.yml to include 7.10.x branch
PR: 7990 - AOW_WorkFlow: Delete all related beans when deleting a workflow
PR: 7989 - BeanFactory: Don’t return deleted beans from the cache
PR: 7986 - Updated LoggerManager to use @method + code cleanup
PR: 7978 - Issue: 7971 - Textarea in EditView overlaps other fields
PR: 7976 - Replace deprecated array index accessors
PR: 7966 - Email css error
PR: 8086 - Link contributors badge to contributors insights
PR: 8073 - Issue: 8057 - Remove all uses of get_magic_quotes_gpc
PR: 8067 - Added the deprecated lowercase v8 API to codecov ignore list
PR: 8061 - Issue: 6314 - Unused language strings in ver. 7.10.8
PR: 8059 - Added a check for SUGARCRM restrictions in htaccess
PR: 8056 - Issue: 7128 - Remove scheme to avoid mixed content error
PR: 8054 - Improve footer styling for new stats item
PR: 8050 - Issue: 8001 - Non-distinct person entries for each meeting/call invited to
PR: 8049 - Header cleanup
PR: 8041 - Remove BusinessCard-related code
Special thanks to the following members for their contributions and participation in this release!
Please visit the official website to find the appropriate upgrade package.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com
Released 23/08/2019
CVE: CVE-2019-14752 - Reflected XSS
CVE: CVE-2019-18783 - Unintended public exposure of files
CVE: CVE-2019-14454 - Employee module does not implement ACL
If you maintain a custom SuiteCRM theme, you should note that this release may require some small changes to your .tpl
Smarty files. This is because of a legacy customization to Smarty that was removed when it was moved to inclusion via Composer.
The only breaking change will be if you’ve used the theme_template
attribute for any Smarty include
s. You’ll need to remove the theme_template
attribute and change the file attribute to use the full path:
{* before *}
{ include file="_head.tpl" theme_template=true }
{* after *}
{ include file="themes/SuiteP/tpls/_head.tpl" }
Plugin files are still usable in the same way as before – at ./include/Smarty/plugins/
– and can be require
d explicitly. Custom plugins should still go in ./custom/include/Smarty/plugins/
. It should be noted that all other files in ./include/Smarty
have been replaced by empty files to prevent errors in case users were `require`ing the files. They’re deprecated, and requires referencing them can be safely removed. Smarty’s internal files will be autoloaded by Composer by default.
PR: 7719 - Fix/backwards compatibility
PR: 7718 - Issue: 6982 - New user password not being generated
PR: 7713 - Issue: 7712 - Case insensitive detection of header X-CampTrackID
PR: 7699 - Issue: 7667 - Cannot import Email if plain-text plus attachment
PR: 7697 - Folder include/SugarCharts/Jit missing in 7.11.7 installation
PR: 7695 - Add a proper return type to getUserRoleNames()
PR: 7689 - Format InlineEditing.js with prettier
PR: 7683 - Issue: 6415 - Bug when inbound email Leave Messages On Server set to No
PR: 7682 - Documents - Image Field Does Not Display Uploaded Image
PR: 7681 - Issue: 7138 - EmailMan sendEmail missing restricted_addresses check
PR: 7610 - Fixed error message css + email warning config option
Special thanks to the following members for their contributions and participation in this release!
Please visit the official website to find the appropriate upgrade package.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com
Released 31st July 2019
#CVE-2019-13335 - Security Issue - Fixed SSRF
Security Issue - Fixed privilege escalation
#3756 Fixed #3756 - Calendar pop-ups now auto close after 500ms
#6850 SAML2: Use php-saml from composer
#7154 Fixes SugarPHPMailer encountered an error: Could not access file
#5754 Fixed #5754 - Error with custom fields on getQuery from One2Many relationships
#7345 Get ChromeDriver’s latest release in Robo task
#7390 Fixed #7390 - Unable to set Minimum Password Length in Password Management
#7433 Clean up codeception environments
#5552 Fixed #5552 - Inbound Email Auto-reply send email without Attachments
#6992 Fixed #6992 - Group Email Inbox accounts doesn’t respect reply as option in admin
#7477 Remove unused webDriverHelper variables
#3756 Fixed #3756 - Popup Studio and Calendar don’t auto-close
#7409 Fixed #7409 - Managing Delegates Removes main windows Scrolling
#7421 Fixed #7421 - Use of ampersand (&) in email subject sends email subject misformatted
#7491 Remove unnecessary test files
#7492 Replace the createAccount method
#7509 Fixed #7509 - Using prefix index to not hit Key threshold in MySQL5.6/UTF-8
#7511 Fixed #7511 - Silent installer tries to do unknown things on completion
#7467 Fixed #7467 - Survey entry-point broken in 7.11.5
#7267 Fixed #7267 - Database Failure after upgrading to Version 7.11.4
#7407 Fixed #7407 - "Users may send as themselves" broken - Invalid address: (punyEncode)
#7520 PSR-2
#6935 Fixed #6935 - Cookie path is not respected if globally set
#6470 Fixed #6470 - Email module: Inline image not shown in received/sent email
#7530 Fix missing function getAssignedEmailsCountForUsers
#7535 Misc automated testing improvements
#7536 Cleanup files created by acceptance tests between test runs
#7304 Fixed #7304 - ListView: Fix selection count for the "Select All" case
#7541 ListView: Fix the selection count when executing an action without any selection
#7542 ListView: Fix selection when switch from "select all" to "select page"
#7550 SugarWidgetSubPanelEmailLink: Fix missing opt-in ticks after inline editing
#7553 sugar_3.js: Remove unused send_form_for_emails()
#7554 Fixed email attachment icon
#7284 Fixed #7284 - Top of dashlets being cut off by nav bar nd positioning of dashlet pop-up
#7561 Add a get_current_language() helper function
#7562 Fix/silent upgrade
#7547 Fixed #7547 - use correct login image on install.php
#5190 Fixed #5190 - Attachment in detail view of non imported email doesn’t show
#7565 Add wait to HomeCest so it won’t flake
#7567 Fixed #7567 - Missing Contracts from selection of Related to: field
#4881 Fixed #4881 - Detail view of no imported email is different as imported + missing time unit + attachments
#2464 Fixed #2464 - Logo upload function is not working
#7573 Remove sugar references
#7582 Fix codecov path
#7583 Backport hotfix robo tasks
#7209 Fixed #7209 - Inline Edit alert Even if I dont make a change
#7588 Fix pagination button class
#7298 Fixed #7298 - Emails 'Bulk Action' is disabled after upgrade to 7.10.16
#7594 Fixed #7594 - Remove include/timezone/timezones.php
#7607 Remove lastView variables from tests
#7599 Fixed #7599 - Unwanted email generated in case creation & update
#7608 Fixed #7608 - A non-numeric value encountered at ListViewSubPanel.php
#7624 Fixed email settings "data error"
#6996 Escaped strings issue, breaks "My favorites" filters and perhaps other things
#7639 Fixed DB failure with activities subpanel
Special thanks to all members for their contributions and participation in this release!
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com
Released 1st July 2019
#7439 - Update password hash to use php password_hash by default.
#7455 Fixed #7455 - Keep Lead photo when converting to Contact.
#7249 Fixed #7249 - Admin user cannot edit another user’s Mail Accounts.
#7156 Fixed #7156 - Slow SQL query in include/SugarFolders/SugarFolders.php causing slow emails interface in 7.10.x (and 7.11.x).
#7402 Fixed #7402 - Popup selects are broken.
#6866 Fixed #6866 - 7.10.12 Auto Import of Emails not working.
#3727 Fixed #3727 - IMAP server delete button on DetailView.
#7319 Fixed #7319 - Activity Stream dashlet "reply" function doesn’t appear to do anything.
#4116 Fixed #4116 - Wrong error_1.csv with multiple imports.
#7393 Fixed #7393 - Displaying dropdown db value instead of dropdown label in group header in Reports module.
#7344 Fixed #7344 - Automated Testing improvements.
#7391 Fixed #7391 - DB Error on audit logging large multi select fields.
#7107 Fixed #7107 - SQL errors with sql_mode=STRICT_TRANS_TABLES
#7238 Fixed #7238 - Incorrect user_id saved in users_signatures table when admin updates a signature.
#7351 Fixed #7351 - Fields last_name and first_name in Users too short.
#7357 Fixed #7357 - Home module index page loading bad MySugar file location.
#6379 Fixed #6379 - Unable to GET deleted records through API.
#6343 Fixed #6343 - installer fails, if posix is not installed on linux systems.
#7234 Fixed #7234 - Get subpaneldefs.php from custom/modules/MODULE_NAME/metadata.
#6872 Fixed #6872 - Installation and upgrades files checksums not provided.
#5173 Fixed #5173 - Email inline editing does not work properly (ver. 7.10-RC-2).
#2049 Fixed #2049 - 7.7.2 - Calendar Activities are off by 1 day.
#6140 Fixed #6140 - Switch from league/url to league/uri due to deprecation.
#6445 Fixed #6445 - Campaigns Wizard - EMail Template "Assigned to" issue.
#7241 Fixed #7241 - Some files still use the DB global variable.
#6420 Fixed #6420 - Campaigns: Test-Emails sent out twice.
#5652 Fixed #5652 - Ending spaces in language strings.
#6915 Fixed #6915 - File OAuth2Tokens/metadata/editviewdefs.php is Missing.
#7183 Fixed #7183 - My Cases dashlet searchFields status default values are incorrect.
#7297 - Fixed the support forum link.
#7240 - EmailTemplates: Improve image url replacement.
#7341 - Fix zero padding issue with openssl decryption.
#7329 - StateChecker: Don’t save hash debug traces.
#7253 - Fixed issue with undecoded subjects coming from Emails DetailView.
#7381 - tests: change the test config default date format to match the unit tests.
#7410 - StateChecker: disable save_traces by default.
#7418 - Remove repetitive instance URL visits from tests.
#7389 - Avoid caching incomplete beans in during SugarBean→fill_in_relationship_fields.
#7436 - Simplify the acceptance and install suite configs.
#7444 - IMAP StateSaver test fix
#7453 - Cache Composer files in Travis. (hotfix-7.10.x PR).
#7451 - Add composer validate job in Travis.
#7449 - Remove some incomplete tests and miscellaneous formatting fixes for the unit test suite
#7442 - Replace most instances of $I→wait(n) with waitForX.
#7437 - Remove wait from Codeception Travis env
#7452 - Disable stopOnFailure and stopOnError in PHPUnit config.
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com
Released 3rd June 2019
#CVE-2019-12601 - Security Issue - Fix possible SQL Injection: InboundEmail.php
#CVE-2019-12600 - Security Issue - Fix possible SQL Injection: reassignUserRecords.php
#CVE-2019-12598 - Security Issue - Fix possible SQL injection
#CVE-2019-12599 - Security Issue - Survey module: Inputs are not sanitized (security issue)
#7133 Fixed #7133 - Changes in Studio do not make an override file.
#6445 Fixed #6445 - Campaigns Wizard - EMail Template "Assigned to" issue.
#7241 Fixed #7241 - Some files still use the DB global variable.
#7310 Fixed #7310 - 7.10.x-hotfix CI is failing.
#7174 Fixed #7174 - /Api/V8 needs the ability to return a list of modules.
#7175 Fixed #7175 - /Api/V8 needs the ability to a list of module’s fields.
#6420 Fixed #6420 - Campaigns: Test-Emails sent out twice.
#5652 Fixed #5652 - Ending spaces in language strings.
#6915 Fixed #6915 - File OAuth2Tokens/metadata/editviewdefs.php is Missing.
#7250 Fixed #7250 - Notices in ListViews.
#7183 Fixed #7183 - My Cases dashlet searchFields status default values are incorrect.
#7288 Fixed #7288 - Field name in Campaigns is too short.
#7271 Fixed #7271 - Email Template selection in email module is not working for 7.10.16.
#7291 Fixed #7291 - Field name in ProspectLists is too short.
#7268 Fixed #7268 - Fatal Error with PHP7.3 with LoggerManager.php.
#6504 Fixed #6504 - Multiple bounce handling problems.
#7173 - Fix V8 API authorization header passing with apache+php-fpm.
#7263 - Travis due date fix.
#7273 - install.php: Syntax error upload logo.
#7290 - RFC: travis-ci: add a job for PHP 7.3.
#7297 - Fix support forum link.
#7240 - EmailTemplates: Improve image url replacement.
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com
Released 30th April 2019
Security Issue - Fixed SQL injection
Security Issue - Fixed XSS vulnerability
#7121 Fixed #7121 - API module relationship link on custom module points to module name not field name in vardefs.php.
#6452 Fixed #6452 - Api/V8 create record does not support unicode and space in attributes.
#6608 Fixed #6608 - Pagination not working in SuiteCRM REST API v8.
#6761 Fixed #6761 - Api/V8 - Unable to Delete (unlink) relationships.
#6844 Fixed #6844 - Reduce test suite noise.
#6689 Fixed #6689 - Task Due Date not showing in Opporunities subpanel .
#4297 Fixed #4297 - Error in Listview with previously selected rows and changing to next page (pagination).
#3598 Fixed #3598 - Web to lead multiselect fields not working.
#7127 Fixed #7127 - Add href mailto for email links even when using internal email client.
#6742 Fixed #6742 - Also set opt-in send/fail dates when sending emails through the action menu.
#7139 Fixed #7139 - Fix EmailManTest::testget_list_view_data.
#7102 Fixed #7102 - Don’t delete the composer.lock when running tests on travis.
#7113 Fixed #7113 - phpunit: Various fixes for running with StateCheckerConfig::RUN_PER_TESTS.
#7126 Fixed #7126 - Campaigns: escape subscribe()/unsubscribe() IDs and add tests.
#7129 Fixed #7129 - Update composer.json.
Users of ALL previous 7.10.x releases are advised to Upgrade to 7.10.16 as soon as possible.
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com
Released 28th Mar 2019
#CVE-2019-6506 Security Issue - Fixed SQL injection
#7101 Fix (little) v8 API for v7.10.10+
#7099 Fix/mssql folder support
#6921 Fixed #6921 - Verbose logs for popErrorLevel
#7117 Give cookie a default value to stop from throwing notices.
#6755 Fixed #6755 - Adding setFooter('{PAGENO}') to the PDF
#7044 Fixed Content-Type header missing in some cases for the getImage entry point.
#6733 Fixed - AOR Reports: Add a security groups subpanel.
#7034 Fixed - Removed sugar reference.
#6729 Fixed #6729 - Email Style Issue - Black screen.
#6822 Fixed - Now using secure cookies when appropriate.
#7084 Fixed #7084 - Fix Error in SearchForm2.php when having a function in field definition.
#7045 Fixed - EmailTemplates: Only show subpanels in the DetailView.
#7060 Fixed - warnings in log.
#7067 Fixed #7067 - InLine Date Edit bug - Call to a member function format() on boolean.
#7064 Fixed - Use the provided method to make sure the index exists.
#551 Fixed #551 - add functionality to save new labels for relationships.
#6942 Fixed - issue with tab panel and quick create form.
#5497 Fixed #5497 - Reports: Hide inaccessible modules in the reports editor.
#7082 Fixed - EmailTemplates: Fix undefined property error when creating a new template.
#7035 Fixed - Increase minimum recommended memory to 64Mb (for 7.10.x).
#3592 Fixed #3592 - Problems with quotations.
#675 Fixed #675 - Suitecrm 7.3.2 Calendar entries are not displayed.
#7012 Fixed - Codecov threshold.
#6844 Fixed #6844 - Reduce travis output - DotReporter.
#6185 Fixed #6185 - Top menu mouse out does not close sub.
#5662 Fixed #5662 - EmailTemplate: Fix images URLs not being converted with mozaik.
#7043 Fixed - Random unittest error in SugarControllerTest.
#7041 Fixed - Any Phone search on Contacts module added missing field phone_home on SearchFields.
#7032 Fixed #7032 - Add setLevelMapping method.
#7004 Fixed - PDF templates from setting no value when 0.00 is entered.
#7008 Fixed - Remove Robofile.php + Update composer.lock.
#7021 Fixed - link to testing documentation. [ci-skip].
#5706 Fixed #5706 - 7.10.4 - Checkboxes are missing in downloaded PDF from Reports.
#2531 Fixed #2531 - 7.10.4 - Report Writer - Boolean Field will not export to CSV
#6936 Fixed #6936 - Global link Employees always reset list query.
#5985 Fixed - unified search "no results" page.
#6815 Fixed - unittests: Fixes for PHP 7.3.
#7051 Fixed #7051 - Changed a limit of 2.147.483 seconds for autoRefresh.
#7054 Fixed #7054 - Email body blank when sent as plaintext only.
#7025 Fixed #7025 - Sent date for emails in History View Summary is incorrect.
#6860 Fixed - Reports: Hides inaccessible modules in the reports editor.
#5967 Fixed #5967 - AOR Reports - incorrect calculation for date quarter periods.
Users of ALL previous 7.10.x releases are advised to Upgrade to 7.10.15 as soon as possible.
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com
Released 19th Feb 2019
#6794 Reports: fix "Illegal string offset 'record_id'" errors
#6894 Reports: Fix "One of" operator for multi select fields
#6868 Confirm opt-in fix
#6036 Fixed #6036 - Reports entering a date parameter with Period operator
#6873 PSR-2
#6870 Fixed #6870 - Composer deprecation warning
#6887 Fix/php lint
#6916 Fixed #6916 - 7.11.1 Fatal: Object of class EmailAddress could not be converted to string
#6904 Fixed #6904 - In Campaign view status page, row is out of box
#6778 Fixed #6778 - Role Management - Header change doesn’t update entire column
#2117 Fixed #2117 - Redundant More Button in SuiteP
#6865 Fixed #6865 - Move consolidation/robo to "require" in composer
#6865 Fixed #6419 - Reserved mssql keyword in query, crash business hours module
#6966 Fixed #6966 - Email to field wrong UFT-8 encoding
#6955 Fix missing quotes typo
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com
Released 31st Jan 2019
#6774 Shows HTML version of email templates when "Show Plain Text" is selected.
#532 There is now an edit/remove in the projects subpanel
#6786 No longer display "%20" instead of a space when in dropdown editor
#6468 Fixed possibility of NULL value breaking module builder templates
#6835 LDAP fix.
#6516 Fillers now stay as saved in Gridlayout
#6787 Resolves critial issue when a new user being created the password wasn’t being saved.
#6825 Travis Fix
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com.
Released 14th Jan 2019
#707 Fixed #707 - added conditional statement to check if action is not clone
#2219 Fixed #2219 - Description field not wrapping with SuiteP theme after inline editing
#3763 Fixed #3763 - Resolved the bug that stopped users to navigate using tab order
#4046 Fixed #4046 - 7.9.4 - imported emails are not auto related to related records when you reply to/reply to all/ forward them
#717 Fixed #717 - Corrects Field Indention on Detailview when by itself on panel
#583 Fixed #583 - Adds the visual cue that a module is highlighted on main navigation
#3083 Fixed #3083 - Calendar pop up windows are incorrectly displayed under MENU bar index
#2400 Fixed #2400 - Language manifest is duplicated and overwritten on each install
#6004 Fixed #6004 - Fix round up for quotes/invoices where there is an increase in integral part
#6190 Fixed #6190 - You can now access Change Log from Document Detail View
#6260 New Tests for Inbound Email functionality
#6302 Fixed #6302 - installWizard styling
#6303 Fixed #6303 - Administration / System Settings / ERROR in log: argument cache/themes/SuiteP/modules is not a file or a dir
#6150 Fixed #6150 - This shows all the records of Parent Type in listview
#5477 Fixed #5477 - Resolves issue of Fillers Cause Spacing Issues on the DetailView when they are left of a Field
#6340 Fixed #6340 - Email Compose Dropdown now recognises specialised characters
#5948 Fixed #5948 - Resolved inline editing on the "content" field on the Campaign Module
#6402 Fixed #6402 - Resolved mass update of Users for Email Client.
#5783 Fixed #5783 - Resolved so that the geocoded table header is now visible
#2741 Fixed #2741 - Custom search field subquery now checks all values
#6464 Codecov exclude
#5771 Fixed #5771 - Resolves the Salutation variable missing in campaigns when used.
#6351 Fixed #6351 - Now only sends one email when using activities subpanel as intended
#6485 Fixed #6485 - Resolves opt-in tick for external email clients
#6487 Fixed #6487 - Resolves the DB time shown for related email addresses in reports module
#6472 Fixed #6472 - Resolved wrong sized image for email templates in the campaign wizard
#6530 Fixed #6530 - unsubscribed users no longer showing up as subscribed
#6533 Adding the ability to set subpanels to display as flat buttons via layoutdefs
#6549 Fixed #6549 - No longer a missing surveys_campaigns relationship
#6566 Update composer.json + composer.lock
#6568 Fixed #6568 - Change minimun and recommended PHP
#6579 Fixed #6579 - Resolved Calendar creating an extra meeting after Repeat End by
#6585 php_zip_utils.php
#6586 Fix an erroneously-commented return statement
#6590 Insert images in Email Templates with tinyMCE
#6592 Updated contributing.md
#6552 Fixed #6552 - Resolved AOR_Report exporting apostrophies to CSV.
#6511 Fixed #6511 - Resolved the Document Attachment Subpanel is now correct
#4999 Fixed #4999 - Resolved sent emails now appear in the sent folder.
#6603 Added/Refactor: Clean MySql Queries in SugarFolders
#6594 Fixed #6594 - Resolved Calendar now updates visually when not using "Shared Calendar Separate"
#707 Fixed #6611 - Resolves the issue of users unable to clone a field in studio
#6050 Fixed #6050 - No submit button while editing imported email
#6629 Fixed #6629 - Resolved link now gets deleted in documents
#6653 Fixed #6653 - Resolved campaing wizard no longer shows the template editor in all steps
#5509 Fixed #5509 - [language] Now has the correct label for 'FOR_AMOUNT' in activity stream
#6651 Fixed #6651 - Added LBL_CHECKMARK to SecurityGruop language
#4872 Fixed #4872 - Fixed so subpanel actions are no longer failing if refresh_page=1
#6678 Resolved blank screen on PasswordManager
#6698 Copyright revision
#6726 outgoing emails: From field incorectly filled
#6727 Emails Module: Inbound Settings Layout, Date Sent and Draft Sending
#6738 Fixed #6738 - Resolves the issue of when creating a row the delete collumn will now display correctly.
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com.
Released 5th Dec 2018
CVE-2018-20816 Security Issue - Resolved XSS vulnerability in “Add dashboard pages”
#2635 Fixed #2635 - Import mapping publish button
#3440 Fixed #3440 - Make sure deleted users are not used when validating users
#2786 Fixed #2786 - Panels showing wrong in SuiteP
#6240 Fixed #6240 - PipelineBySalesStageDashlet not converting currency
#6348 Change hard coded labels in Events invites
#6381 Time issue fixed in email template for datetime fields
#6432 Fixed #6432 - Studio: invisible "pencil" icon to edit panel labels
#4123 Fixed #4123 - reports: fix adding parameterized reports to target lists
#6328 Fixed #6328 - Workflow Date - Remove incorrect branch when unserialize fails
#6555 Fixed bracket issue
#6556 Default navigation paradigm should be used
Users of ALL previous 7.9+ releases are advised to Upgrade to 7.10.11 as soon as possible.
Please visit the official website to find the appropriate upgrade.
Special thanks to LEAP-nishit and the following members for their contributions!
That’s a total of 12 community merges across the releases! Well done everyone!
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com.
Also special thanks to Rewanth Cool and hrushikeshk for raising/reviewing security issue.
Lastly a big thank you to the community for testing and confirming pull requests!
Released 24th Oct 2018
Introducing re factored API version 8. Please review the updated documentation here to learn more.
#5656 ListViewDisplay Incorrectly Checking for $this→email to be 'Set' Instead of True/False
#6315 [language] Duplicated language strings in ver. 7.10.8
#6406 Add Prospects to Studio
#5726 Token expires/expiry [language]
#5526 Inline Edit doesn’t show new value for date and relate fields
#6392 Changing Managing Folders Has No Effect
#6320 Empty collapsed activities/history subpanels is always shown as a subpanels with some records
#5286 Empty help message when creating user
#5265 Install fails without warning if the database specified lacks MyISAM support
#6341 Fixed #6341 - Users may send as themselves tick is never hide
#6363 Fixed #6363 - quote number should not has to be required
#6362 Fixed #6362 - mentioned fix to omit file data
#6364 Fixed #6364 - "Create Scheduler" broken - no Jobs to select
#6338 Fixed #6338 - ChangePassword.php - syntax error missing curly braces
#6326 Fixed #6326 - Quick radius map + Geocode test issue
# Fix MY_FRAME logging message
#5360 Language keys - Cut down on sugar in your diet - part II
#5961 Allow attachments in email templates when editor is not Mozaik
#6322 Fixed #6322 - creating parent-child relationship in clean install of 7.10.9 causes parent display to break
#6321 Fixed #6321 - using same form name as back-end does
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com.
Released 17th Sep 2018
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com.
Released 13th Sep 2018
#2172 Fixed #2172 - Inline edit issue if you click on pencil icon - revised
#4265 Fixed #4265 - PHP strict error
#2783 Fixed #2783 - In the calendar dashlet, right / left week icons are not visible
#4320 Log level "Warn" cleanup
#3662 Fixed #3662 - Calendar date selector popup
#3535 Fixed #3535 - Variable clash ($request vs $_REQUEST) in modules/Emails/Email.php email2Send()
#4344 Make Business Hours less mysterious
#4367 Fixed #4367 - files.md5 sets $md5_string_calculated but here $md5_string used
#4406 Fixed php notice
#3091 Map add to targetlist - json reply
#2890 Fixed #2890 - Workflow Condition on custom field error
#4488 Fixed #4488 - line items reports
#5144 Fixed PHP notice
#1716 Fixed #1716 - Rem word as a Remove abbreviation? [Language]
#2176 Fixed #2176 - Days Dim - requesting context for translation
#5446 Fixed #5446 - make UserViewHelper.php code-customizable
#5468 Fixed #5468 - Usage of the word DROP [Language issue]
#4920 Fixed #4920 - SugarFields Address language files for View.tpl
#5343 Fixed #5343 - Mismatch between Security Groups and Security Suite names in Administration
#5016 Fixed #5016 -[language] Hard coded messages in opt in (ver. 7.10RC)
#5444 Fixed #5444 - LBL_UW_START_DESC2 - code or normal words?
#5641 Fixed events calendar labels
#5647 Fixed #5647 - Number after subpanel name in Studio
#5690 Fixed #5690 - [language] Unused language strings in ver. 7.10.4
#5790 Fixed #5790 - File link on list view on custom document module is broken
#5814 Fixed #5814 - BUG in workflow emails - date and time showing in UTC format - on save only
#3468 Fixed #3468 - Email Template - Note Date Entered - Format remains yyyy-mm-dd
#5719 Fixed #5719 - 7.10.4 new case number still doesn’t show up in the email notification
#5862 Fix test codecoverage
#5303 Fixed #5303 - PHP Warnings on SugarWidgetFieldName and SugarWidgetFieldId
#5998 Fixed #5998 - Can’t select document on email compose using search
#6002 Fixed invalid survey Campaign link #6002
#6006 Fixed #6006 - Revert "making check correctly fit the warning message
#6014 One step forward to using correct user name and from address for email sending #6014
#6015 Fixed #6015 - From Dropdown on Email Compose has wrong value for sending email address w/ System account
#6022 Fixed #6022 - API v4_1 get_module_fields method does not return parentenum
#4035 Fixed #4035 - Upgrade on 7.9.4 Content in emails are same in body for all emails
#5918 Fixed #5918 - Activity Stream elapsed time calculation
#6025 Fixed #6025 - Newsletter campaign target list selection broken
#6035 Show only if user has rights to activity/history record
#6041 Fixed #6041 - Repeated field in Contacts listviewdefs
#6045 Tests: Remove help text, link to Docs site
#6049 Hotfix statechecker updates (and removing commented code from unit test)
#6052 Fixed #6052 - AOR_Reports are showing date+hour on date fields
#6054 Convert line endings
#6055 Fix regression from #5559 (displayEmailAddressOptInField)
#6061 Fixed #6061 - Why phpinfo as a language string?
#5981 Fixed #5981 - Bug at pop up in target list version 7.10.5
#5995 Fixed #5995 - Set default field tabindex to 0 instead of -1
#6072 Make some PopupPickers a bit more code-customizable
#6076 Set a distinct emails import view name to avoid cache conflicts
#609 Fixed #609 - Currency issue in Listview
#5897 Fixed #5897 - Activity steam: elapsed time calculated wrong for "yesterday"
#6082 PSR-1: Basic Coding Standard
#6083 PSR2 - class definition
#6084 PSR2 - elseif
#6085 PSR2- function declaration + braces
#6086 PSR2- indentation type
#6087 PSR2- lowercase constants + keywords
#6088 PSR2 - method argument space
#6089 PSR2 - closing tags
#6090 PSR2
#6091 PSR2 - parenthesis spaces
#6093 PSR2 - single line after imports
#6094 PSR2 - switch case space
#6095 PSR2 - required visibility
#6096 Codecov
#6255 Fixed #6255 - Seemingly redundant code logs: [FATAL] log call at: modules/Administration/index.tpl:54 - MY_FRAME is not set
#6098 Wrong link of roadmap
#6099 disabling group relationship for regular users
#6104 Fix Undefined variable
#6105 Show Audit log even if user does not exist (anymore)
#6107 Fixed #6107 - Is not posible to update a case with multiple lines of text using HTML editor
#6108 Fixed #6108 - Google Maps Geocoding API Key NOT added to the call when Geocoding Addresses
#6115 Hotfix unit tests
#5495 Fixed #5495 - Navigate in different page don’t work after modify collumn
#6118 Adding test
#6119 Travis badge fix
#6126 Fixed #6126 - If field value contains single quote, on each save CRM will treat this field as a changed
#6133 Fixed #6133 - Contact popup of AOS_Contracts doesn’t filter by account
#6149 Typo in comments
#6154 prevent scheduled reports from crashing in case time (interval) expression is invalid
#6155 Update mikey179/vfsStream requirement to 1.6.*
#6157 Add composer.lock
#6160 Fix activities subpanel style
#6163 phpcs.xml
#6081 Fixed #6081 - SuiteCRM 7.10.6 - The Description will not save when editing in the Case Edit View.
#6162 Fixed #6162 - PDF Template Discount Percentage is not formatted nicely
#6161 Fixed #6161 - AOR_Reports: Special Character are not exported correctly
#6172 Fixed #6172 - In Wizard editing existing campaing moving from "Templates" to "Marketing" to "Send Email …" creates new entry under marketing
#6181 Remove useless else
#6179 Fixed #6179 - FP_event Email Invite Template dropdown populates with email_templet_list
#5852 Fixed #5852 - Fixed #5852 - email group folders / bug introduced in PR 4877
#5856 Fixed #5856 - Multiple pages PDF from reports when Total of field is selected
#3560 Fixed #3560 - Now we log queries in one, and only one, log line
#6211 Prevent massive slowdown if someone accidently added many favorites
#6215 Fixing AOW_Actions save
#6217 Fixed #6217 - Copyright notice update to 7.10.x
#6225 gcoop libre hotfix 6008 with no mem limit for composer install
#6231 Fixed #6231 - Now the query executed in getNewMessageIds has no WHERE harcoded
#6230 Fixed #6230 - Emails imported automatically in group inbound account are not marked as read
#3864 Fixed #3864 - Deleted and recreated user can’t login with system generated password
#5921 Fixed #5921 - After Upgrade to 7.10.5 SAML users cannot login
#5885 Fixed #5885 - SAML Authentication fails when SAML2Authenticate ticked
#5515 Fixed #5515 - Due date not showed anymore
#6249 Fixed #6249 - 7.10.7 every Outbound Mail has FromName = "Root User"
#6275 Cleaning up tests on hotfix branch
#4730 fixing SugarEmailAddressTest
#6251 Fix vcal name
#5794 Fixed #5794 - listview column filter
#6246 Fix merge fields not populating with the bean values
#5723 Fixed #5723 - Impossible to PATCH AOS_ modules via v8 API
#5892 Fix bug on AOW_Actions relate fields
#6244 Fixed #6244 - 7.8.20LTS AOR_Report fails using a date parameter
#6131 Fixed #6131 - Issue with DetailView of Email module on 7.10.7 xampp
#6243 Fix: Email body is the same on the detail view
CVE-2018-15606 Resolved XSS vulnerability in error message
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com.
Special thanks to Rewanth Cool and hrushikeshk for raising/reviewing security issues and to the many community memebers who helped provide tests for this release, ApatheticCosmos, Abuelodelanada, ChangezKhan, sanchezfauste.
Please note that you will need to modify your php.ini Maximum upload size value if it is below 30MB
_Users of ALL previous 7.10.x releases are advised to Upgrade to 7.10.8 as soon as possible.
Released 18th Jun 2018
#4035 Fixed #4035 - Upgrade on 7.9.4 Content in emails are same in body for all emails
#6025 Fixed #6025 - Newsletter campaign target list selection broken
#6006 Fixed #6006 - In-Line Edit in list view not working in 7.10.6
#5998 Fixed #5998 - Can’t select document on email compose using search
#5303 Fixed #5303 - PHP Warnings on SugarWidgetFieldName and SugarWidgetFieldId
#6025 Fixed #6025 - Fix invalid survey Campaign link
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com.
Released 6th Jun 2018
#5984 Small css fix
#5955 Fixed #5955 - Allow emailing from address links in SubPanels
#5763 Fix red-cross error for empty image fields
#5717 Fixed #5717 - Apostrophe and modules name
#5728 Fixed #5728 - [language] Workflow module: Related module name is not translated (Send Email action)
#5815 Fixed #5815 - CASES Module - Description Field (with wysiwig editor) Not Visible When Save and Continue or Navigate to Next/Previous
#5829 Fixed #5829 - templateParser.php generating incorrect values for Quote Discounts
#4599 Fixed #4599 - utils→get_module_info is not working for custom Beans
#5764 Fixed #5764 - Hard coded messages in alerts.js
#5872 Fixed #5872 - Filename of Notes do not change when uploading a new file
#5873 Fixed #5873 - Removing a Note attachment keeps filename and throws an error when clicking on the file
#5913 Fixed #5913 - Fix a bug for product image overwritten by the other product image
#3778 Fixed #3778 - Compose email pop up window should be closed only by "X icon" in 7.9.1
#5934 Fixed #5934 - Account primary email address override the contact email address in contacts subpanel
#5918 Fixed #5918 - After upgrade from 7.9.9 to 7.10.5 all activity stream items say "0 seconds ago"
#5949 Fixed #5949 - Incorrect data at field "status" in "Cases" module after use "mass update" → close/open
#4957 Fixed #4957 - Html fields showing the string value of the html, not the html itself
#3400 Fixed #3400 - HTML field can’t be edited
#5931 Fixed #5931 - 7.10.5 - OAuth2Tokens Subpanel in Module OAuth2Clients results in DB failure using MSSQL
#5963 Fix missing parameter
#5962 Fixing styles in form to remove double spacing of multiline text fields
#5965 Fixed #5965 - Fix ical request
#5753 Fixed #5753 - Single Opt In status not being saved
#5927 Fixed #5927 - Workflow date condition
#5902 Fixed #5902 - Not audited if the user was not update for the value of the field type 'text', 'varchar'
#5908 Fixed #5908 - SMTP Server not configured after upgrading to 7.10.5
#5901 Fixed #5901 - Converting Lead to Contact doesn’t preserve Confimrer-Opt-In status
#5920 Fixed #5920 - After upgrade from 7.10.4 to 7.10.5 database failure
#3733 Fixed #3733 - Removing messageBox and adding callback
#5917 Making codecov run conditional
#3881 Remove unnecessary code
#5937 Fix image fields in Case module
#5946 Fix typo so view icon appears in custom modules
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com.
Released 21st May 2018
#5663 Fixed #5663 - AOR_Reports Date issues
#5563 Report tests
#2971 Fixed #2971 - A blank screen is displayed instead of an message
#5803 Fixed #5803 - Workflow bug - One field - any change - triggered by any field
#4803 Fixed #4803 - Now $aos_products_product_image is responsible in emails and PDFs
#5702 Fixed #5702 - Can’t create new Target List in 7.10.4
#4611 Fixed #4611 - Manage Subscription on Contacts/Leads result in FATAL Error
#5563 Alert performance
#5823 Fixed oauth2 clients custom views
#5845 Allow merging AOS_Products
#5810 Remove default backgrounds from qtip
#2323 Installer copies (unused) sample image on each run in picture and sets non existing email field
#3275 Remove extra delimiter at the end of the exported line
#4474 Improvement in parameters for dashlet reports
#5639 Fixed #3742 - Report Module - HTML contains invalid UTF-8 character(s)
#5639 Fixed #4504 - AOR sends wrong value when a radio button field is set as condition
#5639 Fixed #5639 - Activities - Compose Email - Broken in 7.10.x
#5657 Fixed #5657 - Multiple empty records are created in email_addresses table when access Users listview
#5661 Fixed #5661 - Drop parenthesis does not work in 7.10.x
#5683 Fixed #5683 - Can’t assign user in Target list
#5607 Fixed #5607 - Undefined variable $new_confirmed_opt_in
#5692 Fixed #5692 - 'Reply to' email cause error on Send and invalidates session - issue in 7.10.4 and 7.10.3
#5713 Fix API error handling
#5718 Fixing tests
#5760 Turning off autocomplete in the login.tpl
#4728 allow also time format in report for datetimecombo field
#4194 Fixed #4194 - Scheduled Reports: Detail and Edit views are not populating fields correctly
#3558 Fixed #3558 - Module Builder Fields
#792 Fixed #792 - AOS Settings: Initial Invoice Number - add validation
#5586 Fixed #5586 - PHP error: Non-static method SecurityGroup::getGroupWhere() should not be called statically
#716 Fixed #716 - The quick create labels at top are not responsive to change
#3737 Fixed #3737 - Popup search for documents in mail compose not working
#4069 Fixed #4069 - Issue with Reports when using range filters (above and bellow) breaks pagination
#4021 Fixed #4021 - PDF Paper Format only working with Invoice Module
#3737 Fixed #3737 - Popup search for documents in mail compose not working on 7.8.x LTS
#5587 Fixed #5587 - PHP Error: [] operator not supported for strings
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com.
Released 9th Apr 2018
#5677 Fixed #5677 - Building new modules in builder do not work
#5674 Fix - Correcting From Name/Address in stored options to show in compose from dropdown
#5679 Fixed #5679 - Can’t edit Email draft
#5624 Fixed #5624 - Make all widget method signatures match their parents
#5632 Removes a blank inherited function preventing the parent from running
#5636 Add UTF16-LE to available charsets
#5166 Fixed #5166 - Your password has expired
#5544 Fixed #5544 - InboundEmail creates exception when receiving Date: header with CFWS
#4396 Missing space, put deprecated width and align in css
#4470 Fixed #4470 - Account address copy feature breaks if address contains HTML entities
#5412 Fixed #5412 - Required / mandatory fields - misplaced asterisk
#4194 Fixed #4194 - Scheduled Reports: Detail and Edit views are not populating fields correctly
#5627 Fixed #5627 - Emails truncated after apostrophes when hit Reply or Forward (SuiteCRM 7.10.2)
#5515 Fixed #5515 - Due date not showed anymore
#3558 Fixed #3558 - Module Builder Fields
#3381 Fixed #3381 - Workflow field gets id instead of value
#792 Fixed #792 - AOS Settings: Initial Invoice Number - add validation
#3388 Fixing #3388 - Quotation Marks or Apostrophes Converted to HTML Entities in Product Lines
#5586 Fixed #5586 -PHP error: Non-static method SecurityGroup::getGroupWhere() should not be called statically
#716 Fixed #716 - The quick create labels at top are not responsive to change
#5660 Fixed list-view sidebar hidden in administration modules
#5628 Fixed #5628 - forward/reply email: lower buttons (send-file, save-draft, etc.) all send email
#5094 Fixed #5094 - Case description
#5673 Fixed bulk action email
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com.
Released 3rd Apr 2018
#5548 Fixed #5548 - GDPR: confirmed opt-in
#5461 Fixed #5461 - Edit labels
#5459 Fixed #5459 - Campaign Emails Don’t Send (test or otherwise)
#5550 Fixed #5550 - Can’t display email when Opt-in on email settings
#5432 Fixed #5432 - Studio not showing requested labels
#4958 Fixed #5406 - ability to change sort order in dashlet
#4657 Fixed #4657 - Change 2 dots to full stop
#5376 Fixed #5376 - User’s Outbound Email Settings Redesign
#5344 Fixed #5344 - Escaped apostrophe on array creating parsing error
#5582 Fixed #5582 - Creation of new tasks fails in AM_ProjectTemplates when user’s date format is not d/m/Y
#5594 Fixed - Extra salt on email address
#5589 Fixed #5589 - Copy account address
#5602 Fixed #5602 - Icons not shown in add dashlet search
#5603 Fixed #5603 - Eye icon leading to a white screen in from contacts dashlet
#5539 Fixed #5539 - Date picker mass update
#5239 Fixed #5239 Make SugarBean logging more informative
#4815 Fixed - Undefined notice "LBL_SEARCH" during Module Builder Deploy
#4738 Fixed - Disable php timeout while report export
#5418 Fixed #5418, #5724: PDF export missing grouped data
#5543 Fixed - Mcrypt and SAML
#5567 Fixed - Set password expiry to zero when upgrading
#4779 Fixed - Add support for 'Any Change' condition on related field
#3186 Fixed - Example display in importer
#5503 Fixed - Preview documents
#5528 Develop: api, errors, exceptions, translations
#5618 Fixed #5618 - API v8 filtering custom field
#4657 Fixed #4657 - Change 2 dots to full stop
#5356 Fixed #5356 - No marker images in maps
#719 Fixed #719 - Blocked loading mixed active content
#3826 Fixed #3826 - Values "OR" & "AND" in report condition are not translatable
#4717 Fixed #4717 - XTemplate doesn’t support output escaping
#5150 Fixed #5150 - Schedulers configured to run every few minutes run every minute
#5574 Fixed #5574 - Epty email addresses are replaced by previous email in csv file
#5585 Fixed #5585 - Cannot enable ajax on module after disabling
#5601 Update jj maps
#5280 Fixed #5280 - Set cookie to remember subpanel collapse status
#5557 Fixed #5557 - Make dashlet drilldown use the correct key
#5244 Fixed #5244 - Pass parameter with script tags to sugar evalScript
#5268 Fixed - php notices
#5111 Fixed #5111 - Date parameters in AOR Reports are not updated
#4351 Fixed #4351 - notes contacts relation
#5518 Fixed - Change misleading message in install_utils.php
#5441 Fixed #5441 - PDF report not showing image in the image field instead it shows a small red x
#5093 Fixed #5093 - Emails sent from within SuiteCRM have mis-matched boundary ids on copy in sent folder.
#5472 Fixed - Updated documentation links
#5613 Fixed #5613 - contact detailview js
#5465 Fix Windows cron instructions for cases where a Drive change is required
#5389 Fixed #5389 - Only admins can see users availability for meetings in the meeting scheduler
#5597 Fixed - namespace
#2927 Fixed #2927 - Emails View Relationship popup collapses on second use
#592 Fixed #592 - Return: true/false instead of 1/0
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com.
Released 15th Mar 2018
#5424 Fixed #5424 - Missing add product menu while using PL language - 7.10.1
#3510 Fixed #3510 - function getRelatedFields() missing from data/Link2.php on 7.8.3
#5163 Fixed #5163 - Send notification from assigning user [text improvements required]
#4747 Fixed #4747 - Allow Call Time Pass Reference is to be On or Off?
#3465 fix: validation of the Email action on Workflows
#5439 Typo in html tag
#5388 Fixed - Warning: Use of undefined constant is_admin_for_user
#5408 Fix out of line expand icon
#5408 Fixed: Google Map GeoCoding is not working with proxy server
#5307 Fixed #5307 - SuiteP Downloaded PDF report get theme background (Grey)
#3859 Fixed #3859 - Address fields (auto generated) not displaying help
#4452 AOW Conditions operator failing due to extra space on ID
#5403 Fixed #5403 - 7.10.1 – "Base Impleme…" email address links in the Recently Viewed sidebar
#5443 Refactor map function to avoid declaring a function twice
#5177 Fixed #5177 - Can’t send Confirm Opt In Email from the custom module
#5003 Fixed #5003 - [language] Hard coded messages in SugarAuthenticate (ver. 7.10RC)
#5443 Refactor map function to avoid declaring a function twice
#5218 Fixed #5218 - Duplicated language strings
#5258 Fixed #5258 - SuiteCRM not compatible with this flavor - Language string
#5311 Fixed #5311 - Unused language strings in ver. 7.10 ?
#5359 Fixed #5359 - Unused string LBL_SUGARCRM_HELP - Hotfix branch
#5428 using marketing 'from name/email' first
#5488 fix email addresses in listivew in case of external email client
#5241 Fixed #5241 - The opt in status strange behavior (develop branch)
#3693 Fixed #3693 - reinstate edit links in sidebar
#5489 Fix/close decoration
#5493 Variableparser - quickfix for exceptions
#5433 Fixed #5433 - admin encryption key for LDAP config
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com.
Released 5th Mar 2018
#5267 Fixed #5267 - "Failed to retrieve data" error in studio
#5323 Remove word "error" from a debug message
#5317 Fixed #5317 - Reports sort by formatted date rather than actual date
#2307 Fixed #2307 - Active module won’t display further than nth list options down
#576 Fixed #576 - AOP emails empty messages when cases are updated and no templates are selected
#5275 Fixed #5275 - Missing Add Dashlet
#5160 Fixed #5160 - Remove SugarCRM reference
#5345 Updated documentation links
#5315 Fixed #5315 - No CASE number when receiving inbound emails for new Cases
#3784 Fixed #3784 - own saved filters under calls is missing - only Suite P
#5365 htaccess generate after upgrade
#5366 Update upgradeaccess.php
#5370 performance: reminders alerts
#5259 Surveys module copyright year
#5263 Removing indentation from HTML strings
#5264 Updating URL to Wiki
#5173 Fixed #5173 - Email inline editing does not work properly
#5277 Fixed inbound email
#5288 Change charts color
#5281 Fixed #5281 - Can’t change theme style
#5293 Fix opt in label in contacts filtering
#5295 Fix emails addresses showing in the side bar
#5309 Fix duplication of email address fields
#5300 change survey toggle
#5314 convert html entities
#5223 Fixed #5223 - Menu ACTIONS its not translatable - SuiteP
#5327 Fixed #5327 - SuiteCRM 7.10 - Subject broken in Notes detail view
#5276 Fixed #5276 - Missing parameter field in reports module
#5341 Fix PHP Error in ListViewPackages.php
#5365 htaccess generate after upgrade
#5366 Update upgradeaccess.php
#5369 Fix missing lato font face for Microsoft Edge
#5214 Fixed #5214 - 7.10 RC2 Studio ProjectTaskTemplate Module Layout Error
#5167 Fixed #5167 - avoid duplicate encoding
#5370 performance: reminders alerts
#5174 Fixed #5174 - Confirmed Opt in tick - Microsoft edge
#5378 fixing calendar picker in the campaign marketing scree
#18 Fixed #18 - Bad CSV export on Reports module
Download here from the SuiteCRM GitHub Repository or visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com
Released 19th Feb 2018
Refined SuiteP theme - New Slimmed down SuiteP Design.
4 SuiteP colour schemes - Pick a range of different colour schemes to suit your workspace.
New REST API - A new Rest API (v8) using the popular JSONAPI specifications.
Survey Management - A new module that will provide you the ability to create, design and send surveys to your customers.
Confirmed Opt-In - A new feature that has been introduced to assist CRM users with the European GDPR legislation.
2 Factor Authentication
Improved Alerts Functionality
Improved Password Management
Additional password restrictions, logging to identify login attempts and enforce password requirements.
Fail2Ban Logging Integration
New Suite of Unit Tests
Improved Email Performance
Email Fixes
#5267 Fixed #5267 - "Failed to retrieve data" error in studio
#5323 Remove word "error" from a debug message
#5317 Fixed #5317 - Reports sort by formatted date rather than actual date
#2307 Fixed #2307 - Active module won’t display further than nth list options down
#576 Fixed #576 - AOP emails empty messages when cases are updated and no templates are selected
#5275 Fixed #5275 - Missing Add Dashlet
#5160 Fixed #5160 - Remove SugarCRM reference
#5345 Updated documentation links
#5315 Fixed #5315 - No CASE number when receiving inbound emails for new Cases
#3784 Fixed #3784 - own saved filters under calls is missing - only Suite P
#5365 htaccess generate after upgrade
#5366 Update upgradeaccess.php
#5370 performance: reminders alerts
#5259 Surveys module copyright year
#5263 Removing indentation from HTML strings
#5264 Updating URL to Wiki
#5173 Fixed #5173 - Email inline editing does not work properly
#5277 Fixed inbound email
#5288 Change charts color
#5281 Fixed #5281 - Can’t change theme style
#5293 Fix opt in label in contacts filtering
#5295 Fix emails addresses showing in the side bar
#5309 Fix duplication of email address fields
#5300 change survey toggle
#5314 convert html entities
#5223 Fixed #5223 - Menu ACTIONS its not translatable - SuiteP
#5327 Fixed #5327 - SuiteCRM 7.10 - Subject broken in Notes detail view
#5276 Fixed #5276 - Missing parameter field in reports module
#5337 fix survey variables with new parser
#5341 Fix PHP Error in ListViewPackages.php
#5365 htaccess generate after upgrade
#5366 Update upgradeaccess.php
#5369 Fix missing lato font face for Microsoft Edge
#5214 Fixed #5214 - 7.10 RC2 Studio ProjectTaskTemplate Module Layout Error
#5167 Fixed #5167 - avoid duplicate encoding
#5370 performance: reminders alerts
#5174 Fixed #5174 - Confirmed Opt in tick - Microsoft edge
#5378 fixing calendar picker in the campaign marketing scree
#18 Fixed #18 - Bad CSV export on Reports module
Please visit the official website to find the appropriate upgrade.
To report any security issues please follow our Security Process and send them directly to us via email security@suitecrm.com.
In order to facilitate European GDPR compliance, SuiteCRM 7.10 introduces two Opt-In settings, Opt-In and Confirmed-Opt-In.
Opt In is used to indicate that a Contact, Lead or Target has opted in to receive marketing communications.
Confirmed Opt In further requires users to confirm their opt-in status by clicking a link sent to them via email. This email can be configured to send automa cally (e.g. on submission of a Web-To-Person form) or manually, and the template used to send this email can be customised.
You can read more about this new feature here.
Download here from the SuiteCRM GitHub Repository or visit the official website to find the appropriate upgrade.
We have also updated our Security Process asking the community to send their security issues directly to us via email security@suitecrm.com.
Released Jan 23, 2018
Release Notes
This is a Beta release and should not be used in a production environment
Changes since Beta 2:
Confirmed Opt-In
Email fixes
Web to person opt-in
Email opt-in indication
Released Dec 18, 2017
This is a Beta release and should not be used in a production environment
Changes since Beta 2:
4 SuiteP colour schemes (Day, Dawn, Dusk, Night)
Email Performance Improvements
Bug Fixing
API swagger documentation added
Released Dec 1, 2017
This is a Beta release and should not be used in a production environment.
Released Nov 17, 2017
This is a Beta release and should not be used in a production environment.
Content is available under GNU Free Documentation License 1.3 or later unless otherwise noted.