Skip to content

6.3.0

Choose a tag to compare

View all tags
@DawoudIO DawoudIO released this 06 Dec 02:16
6.3.0
2938747
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

🚨 Critical Security and Feature Update: Church CRM Version 6.3.0 🚨

A major new release of Church CRM is now available. This update includes several significant user experience improvements and, most importantly, addresses a large number of critical security vulnerabilities. We strongly recommend all users upgrade to 6.3.0 immediately.

🛡️ CRITICAL SECURITY MANDATE: Update Immediately

This release contains extensive security fixes that are essential for protecting your data and users. Several vulnerabilities, including Cross-Site Scripting (XSS) and SQL Injection risks, have been patched.

Key Security Enhancements:

  • Massive Vulnerability Patching: This release fixes numerous XSS vulnerabilities across multiple areas (CSV Import, Public Registration, Group names/descriptions, Calendar name, Family notes) and multiple SQL Injection vulnerabilities (in Event Editor, custom field editors, and other parameters).
  • Enhanced Access Control: Fixes issues with broken access control in Kiosk Manager API endpoints.
  • Password Security Upgrade: Implements an upgrade to the password hashing mechanism for improved user data protection.
  • System Integrity & Redirects: New features for System File Integrity checks and a dedicated Security Redirect Page have been added to improve overall platform resilience.

Action Required: Due to the severity and volume of security patches, updating to Church CRM 6.3.0 is the highest priority.

✨ Exciting New Features & User Experience (UX) Improvements

Version 6.3.0 brings a host of updates designed to make daily administration faster, cleaner, and more intuitive.

📊 Dashboard & System Improvements

  • New Finance Dashboard: A dedicated Finance Dashboard & Report Pages feature has been added to streamline financial oversight.
  • Improved User Dashboard: The main dashboard is now more helpful with:
    • 14-Day Lookahead: See upcoming birthdays and anniversaries for the next two weeks.
    • Performance: Data checks and admin tasks have been moved to the dashboard for better performance.
  • First-Time Setup Wizard: A new admin dashboard setup wizard simplifies first-time system configuration.
  • Backup/Restore Improvements: Enhancements to the backup and restore functionality for greater reliability.

📝 Editor & Navigation Enhancements

  • Modernized Editors (Family & Person): Significant UX improvements to the Family Editor and Person Editor pages, including better layout and updated Floating Action Buttons (FABs).
  • Deposit Slip Navigation: Added previous/next navigation buttons to the Deposit Slip Editor for faster processing.
  • Menu Speed and Clarity:
    • Faster Menus with Icons: Menu speed has been improved, and new icons are utilized for better visual recognition.
    • Accurate Menu Highlighting: Menu highlighting now accurately reflects the active page you are viewing.

📅 Events & System Administration

  • Events UX Cleanup: The Events management area has been given a UX Clean and Simplification pass.
  • System Administration Consolidation: Admin pages have been consolidated to a /admin/system path for easier access and management.

🐞 Notable Bug Fixes

While the focus is on security and new features, several functional bugs were also addressed:

  • Fixes to issues impacting the Sunday School dashboard and group role management.
  • Resolved missing variable extraction in the Advanced Deposit feature.

Full Changelog: 6.2.0...6.3.0

Assets 3
Loading