WP Mailster

1.8.23

Release Date – March 20th, 2026
* [Bug Fix] Avoid PHP 8.3 warnings Deprecated: Creation of dynamic property
* [Bug Fix] Fix: avoid “array_merge(): Argument #2 must be of type array, null given”
* [Bug Fix] Fix deprecation warnings about utf8_encode and utf8_decode

1.8.22

Release Date – July 6th, 2025
* [Bug Fix] Fix issue where apostrophe character within SMTP error code makes it that send errors are not stored, closing SQL injection attack vector
* [Bug Fix] Fix PHP Deprecated: strripos(): Passing null to parameter in MailUtils.php
* [Bug Fix] Fix for thread/references shortening
* [Bug Fix] Prevent PHP warning (array_key_exists(): Argument #2 ($array) must be of type array, null given)) when a sender without TO recipient is received

1.8.21

Release Date – January 2nd, 2025
* [Bug Fix] Fix Cross-Site Scripting (XSS) vulnerability

1.8.20

Release Date – January 2nd, 2025
* [Improvement] Add confirm delete dialog for list views (e.g. mailing lists, users, groups, emails, …)
* [Bug Fix] Sender/SMTP connection checks working again
* [Bug Fix] Do not save attachment(s) when the email fails to be saved
* [Bug Fix] Fix subscribe/unsubscribe widget (to not display HTML tags for the widget title)

1.8.19

Release Date – November 30th, 2024
* [Bug Fix] Fix issue in subscribe/unsubscribe shortcodes introduced in v1.8.18

1.8.18

Release Date – November 27th, 2024
* [Bug Fix] Fix Cross-Site Scripting (XSS) vulnerabilities
* [Bug Fix] Fix Stored Cross-Site Scripting (XSS) vulnerability (CVE-2024-11782)
* [Bug Fix] Fix Sensitive Data Exposure vulnerability (attacks require user role of Subscriber or higher)
* [Bug Fix] Fix PHP warnings

1.8.17

Release Date – November 15th, 2024
* [Bug Fix] Fix for when certain email character set conversion lead to an empty email body
* [Bug Fix] Fix SQL Injection vulnerabilities (attacks require user role of Contributor or higher)
* [Bug Fix] Fix Cross-Site Scripting (XSS) vulnerabilities (attacks require user role of Contributor or higher)
* [Bug Fix] Fix Sensitive Data Exposure vulnerability (vulnerability exists only when CSV exports have been done)
* [Bug Fix] Fix Sensitive Data Exposure vulnerability (attacks require user role of Subscriber or higher)
* [Bug Fix] Fix Settings change vulnerabilities
* [Bug Fix] Fix Arbitrary Content Deletion vulnerabilities

1.8.16

Release Date – October 28th, 2024
* [Improvement] WordPress 6.7 compatibility (marker)
* [Bug Fix] Security fix to close Cross-Site Scripting (XSS) vulnerability

1.8.15

Release Date – October 16th, 2024
* [Improvement] Improve error handling and logging
* [Improvement] Add selected logging about queue status and actions
* [Improvement] WordPress 6.6 compatibility (marker)
* [Bug Fix] Remove no longer relevant code

1.8.14

Release Date – May 24th, 2024
* [Improvement] Automatically shorten (too) long subjects, current max length: 191 characters
* [Bug Fix] Fix email character display/modification issues with Baltic encoding
* [Bug Fix] Fix backend email archive view (and other admin list views) for Safari
* [Bug Fix] Fix some rare cases where email was not saved to database
* [Bug Fix] Fix multiple PHP warnings

1.8.12

Release Date – February 1st, 2024
* [Bug Fix] Fix reCaptcha (v2 is still used)
* [Bug Fix] Fix multiple PHP warnings
* [Bug Fix] Fix multiple PHP deprecation messages (Deprecated: Creation of dynamic property)

1.8.11

Release Date – December 21st, 2023
* [Improvement] CSV import also supports file with only emails (no name column)
* [Improvement] Do not create Microsoft and Google default connections because of missing OAUTH2 support
* [Bug Fix] Avoid error “Prohibited input U+00000081” and update idna-convert library
* [Bug Fix] Fix issue where special characters in subject break user interface (list of archived emails, list of queued emails)
* [Bug Fix] Bounce emails containing email addresses in angle brackets are showing the addresses in the email archive email details view

1.8.10

Release Date – September 4th, 2023

• [Bug Fix] Fix for: Non-static method PEAR::isError() cannot be called statically
• [Bug Fix] When moderation is active, the list administrators (serving as moderators) should not need to approve their own messages to the list

1.8.9

Release Date – August 18th, 2023

• [Bug Fix] submitTxt parameter works again for subscribe/unsubscribe shortcodes
• [Bug Fix] headerTxt parameter works again for subscribe/unsubscribe shortcodes
• [Bug Fix] Fix error 1406 Data too long for column references_to
• [Bug Fix] Fix WordPress database error: [Unknown column ‘published’ in ‘where clause’]
• [Bug Fix] When emails get deleted, no empty folders remain (where the attachments were stored in before they were deleted)
• [Bug Fix] Fix two bugs related to email digests that could prevent digests from being sent (Society & Enterprise edition)
• [Bug Fix] Avoid warnings with PHP 8.2