Shopware 5.5.7
15 March 2019
Shopware version 5.5.7 is now available (security release).
Upgrading to Shopware 5.5.7
Shopware 5.5.7 can be upgraded to (or installed) using any of Installatron's products. Use Installatron's optional Automatic Update feature to automatically apply Shopware updates as new versions are released, or use Installatron's Clone feature to duplicate an existing Shopware install to test the 5.5.7 upgrade prior to applying it live. Get started managing your Shopware installations with Installatron
What's New in Shopware 5.5.7
Security
- SW-23166, SW-23428: Session Fixation
- SW-23007: CSRF Token Leakage
- SW-23319: Non-persistent XSS
Bug Fixes
- Translation of blog entries
- Added possibility to manipulate the URLs for the sitemap via config.php
- In Batch processing mail errors are now also handled
- Filters in blog categories can now be hidden
- Improved ReflectionHelper support for Composer projects
- Fixes problems saving orders when the client timezone doesn't match the server's
- Fixed price count rounding
- Changed the type of the `docId` column in `s_order_documents` to VARCHAR, the models and backend module have been changed accordingly.
- CLI commands for plugins now can clear the relevant caches
- Optimized SQL query in risk management
- Updated Symfony libraries in installer
- Fixed an issue with the menu in the affiliate partner view on mobile devices
- Fixed JQuery Preloader reset
- Improved MySQL 8 compatibility in newsletter module
- Visitor widget in the backend now properly displays a users company, if available
- Added an ID to the iframe in the installer
- Fixed CSS selector
- Removed duplicate advanced menu cache test
- Fixed LESS mixin ´column-break-inside`
- The dynamic mapping of products and properties on indexing in Elasticsearch can now be disabled
- Added new blocks in `listing/listing_actions/action-pagination.tpl` and `listing/listing_actions/action-sorting.tpl`
- Fixed the activating of the extended editor
- Added `shopId` to the `Shopware_Controllers_Seo_filterCounts` event
- Corrected wrong error message referring to plugin subscriptions
- If condition simplified
- Improved if condition in GenerateArticleImages
- Sorting position of countries in fronend is now being displayed in the backend country grid
- Fixes occasionally occurring duplicate Shopsites in sitemap.xml
- Added font-display for Open Sans
- Replaced Router with RouterInterface
- "Apply Standard Data" applies now also last stock field
- Removed duplicate folder renaming
- Orders in the order module are now sorted correctly by default in Elasticsearch mode
- Added new blocks in `index/index.tpl` and `index/header.tpl`(tinect)
- Fixes not updated basket header if the last product is being removed from the off canvas basket
- The customer can now be opened from the order detail overview
- Media cleanup now also checks links
- Fixed the selection of states in backend when creating a customer
- Changed backend search for articles with chars like 'ß'
- Added function to ignore customer groups for caching in the advanced menu
- The command "sw:plugin:delete" is now able to delete plugins in the new plugin structure