ExpressionEngine 5.4.2

Important: This version includes important security updates.

Bug Fixes 💃🐛

• Fixed a bug #347 where radio field label and values were swapped in channel form.
• Security: Fixed a potential directory traversal vulnerability

ExpressionEngine 6.0.3

Important: This version includes important security updates.

Bug Fixes 💃🐛

• Resolved #629 where CP styles were broken by browser extension.
• Resolved #800 where File Picker was not shown for Text fields.
• Resolved #824 where channel entry stats numbers were not consistent.
• Resolved #871 where some channel access checkboxes were still selected on Role edit page after
• Resolved #885 where checking for template access was creating unnecessary server load.
• Resolved #888 where PHP notice was shown when viewing front-end of fresh EE6 installation without templates.
• Resolved bug where removing avatars in legacy member templates was throwing PHP error. removing all permissions.
• Resolved bug where Template Profiler might throw PHP error when checking for memory.
• Resolved bug with file upload not working on entry edit page after invoking file browser in thumb view.
• Resolved bug when JavaScript warning was thrown when file was uploaded and name conflict resolved.
• Resolved bug where database may not have existed in backup during update
• Resolved bug where Theme Folder Path may not have been correct causing errors during updates.
• Resolved but where some 3rd party add-on icons where not properly fetched.
• Security: Fixed a potential remote code execution vulnerability
• Security: Fixed a potential directory traversal vulnerability

Enhancements 🚀

• Added PrimaryMembers relationship for Role model.

ExpressionEngine 6.0.2

Bug Fixes 💃🐛

• Resolved #192 where keywords filter was not always working in Entries Manager when using Safari browser.
• Resolved #812 where SuperAdmin could not log in after editing its role.
• Resolved #817 where it was not possible to add new items in Simple Commerce.
• Resolved a bug where no icons where displaying for missing files in file field.
• Resolved display issues in file browser for files that have been physically deleted.
• Resolved #847 where parent_id key was missing on exp_categories table.
• Resolved bug with system not being reset to previous online/offline state when performing 1-Click update.
• Resolved bug with Debug Tools banner and version info popup not being shown after 1-Click update.

Enhancements 🚀

• Added extension hooks for Role Model
• index.php and admin.php are now updated automatically when performing 1-Click update.

ExpressionEngine 5.4.1

Bug Fixes 💃🐛

• Fixed a bug where saving template revisions after system upgrade might have caused PHP error
• Fixed a bug where categories in related entries were not eager loaded when using {exp:channel:entries} tag.
• Fixed a bug #474 where entry body could be empty when using Moblog.
• Fixed a bug with system not being reset to previous online/offline state when performing 1-Click update.
• Fixed a bug with Debug Tools banner not being shown after 1-Click update.

Enhancements 🚀

• Updated Xmlrpc and Xmlrpcs libraries for PHP8 support.

ExpressionEngine 6.0.1

Bug Fixes 💃🐛

• Resolved #783 where an exception could be thrown when deleting users with long user names.
• Resolved #768 where some buttons on the “forgot password” screen where not translated.
• Resolved #730 where a link was invalid.
• Resolved #744 where the incorrect file upload directory was selected in an RTE field.
• Resolved #733 where jump menu was not changing correctly when a user choose a different language for the Control Panel.
• Resolved #753 where debug was set to automatically set to 1 on new install.
• Resolved #737 where images uploaded to a file grid field did not always show as added to the entry.
• Resolved #713 where site was set to “offline” after upgrading to EE6.
• Resolved #693 where only 5 images were added to an entry when adding more than 5 images to a file grid within a fluid field.
• Resolved #735 where installer could not finish on some shared hosting environments.
• Resolved #740 where on-the-fly manipulations were not updated when an image is replaced.
• Resolved #714 where Color Picker events are not fired on Grid settings page
• Resolved #742 where logged_in_primary_role_id was not parsing in templates.
• Resolved #725 where a language key was missing for the Jump Menu.
• Resolved #721 where channels named with numbers where not shown correctly in main navigation.
• Resolved #708 where MySQL’s join limit could be reached and cause errors.
• Resolved #717 where new user roles where not being shown in the main navigation.
• Resolved #572 where the main navigation flyout menu could not accommodate long list of channels.
• Resolved #696 where the EECLI was not installed via 1-Click update.
• Resolved #703 where channel form could not upload files to other site.
• Resolved #691 where add-on classes were not properly aliased.
• Resolved #705 where an incorrect tag was added to docs.

Enhancements 🚀

• EE Core code is now formatted for PSR-12!
• Select buttons in Relationship fields can now be customized.
• Add cache clearing option for the JumpMenu #623
• Removed Channel options in relationship field when there is only one channel to choose from #684.
• Added more heading options to the RTE field #695.

ExpressionEngine 6.0.0

New Control Panel Design 🎨

• Added Jump Menu. Navigate ExpressionEngine fast
• Many new changes and improvements that make the control panel cleaner, and more delightful to use
• Brand new dark theme.
• New sidebar navigation
• New Account Menu
• Create and Edit navigation items have been merged
• Better navigation. Navigation buttons are now in a more consistent location. The member account menu shows the member’s primary role. “Manager” has been removed from most of the page names, e.g “Entry Manager” is now - “Entries”. Navigation works better on mobile.
• Add-ons and categories have been moved out of the dev menu and into the sidebar
• The files page has a new thumbnail view
• Collapsible sidebar navigation
• Editing and preview files is now easier in the files manager
• “Sticky entries” is now optional feature that can be turned on in preferences for each channel
• You can now drag to change the width of the live preview panes
• The add-ons page uses a new card view, shows add-on icons, and has a separate tab for updates
• The SQL query form has new buttons to insert common used SQL snippets
• The tabs and save buttons on the edit entry page are now sticky
• The date picker has a new today button, and days are easier to click.
• The grid field now collapses on mobile
• The dashboard has been upgraded to be more useful.
• “Remove” wording has been changed to the more appropriate “delete” for destructive actions.
• Deletion confirm dialogs are more scary
• Pagination improvements. Pagination shows 8 pages, instead of 3.
• You can now tab to toggle buttons
• Added support for third-party add-on icons to Add-on Manager
• Changed sidebar copyright company name
• Default avatars have been removed
• UX Updates to encourage CMS integrators to take the appropriate next steps while using the CMS
• And many more changes!
• Template editor improvements
  • You can now comment EE code with command + / in the template editor
  • You can now select a single line of text when clicking on a gutter number in the template editor
  • Improved EE syntax highlighting
• New Member Template examples have been added
• New entry manager (Entries listing page) with filters bar, better layout, simpler search, and individual filter clearing!
• Live preview has been modified to make add-on support easier
• New Variable modifiers to crop, resize, and rotate images
• Member Groups have been replaced with member roles.
  • Members have one primary roles, and can also can have multiple other roles
  • Role permissions are additive
• New Field Types
  • New RTE
  • New Color Picker Field
  • New Relationship field
• Began working toward ADA compliance
• Users can now upload WebP images via the File Manager #304
• The Blacklist/Whitelist Module for ExpressionEngine has been renamed to Block and Allow Module.
• Upload Directory and Upload Path are now populated with {base_url} and {base_path} by default when creating new Upload Directories.
• The success notification for a saved entry now links back to the saved entry.
• Improved error message for removed models and tables.
• Updated default system error messages to use new v6 design.
• Updated styles for 1-Click Updater and Installer Screens

Bug Fixes 💃🐛

• Resolved bugs in the updaters where MySQL errors could be triggered.
• Fixed Live Preview functionality with Grid and Fluid Fields
• Fixed a bug where the debugger code highlighter would also highlight and overwrite other code blocks on a site’s page
• Resolved issue where new template groups were not recognized on a blank install until the user also creates a new template group in the - Template Manager.
• Resolved #431 where the EE Block/Allow list was not able to be downloaded from within the Block/Allow Module.

Developers 💻

• Moved tests to use Cypress
• Add-ons that use Members must use Roles in place of MemberGroups
• Removed EllisLab from Namespace and EllisLab folders
• Updated CodeMirror to version 5.48
• Deprecated the Channel Status controller getForegroundColor()
• The member property display_avatars has been removed
• The config options enable_avatars and allow_avatar_uploads have been removed
• Removed the deprecated jQuery add-on
• Removed the deprecated Emoticon add-on
• Forgot Password emails will now respect your “Mail Format” preference (essentially enabling the ability to use - HTML in Forgot Password emails).
• Fixed a bug where table bulk selections can be saved by the browser on page reload, but don’t show in the UI.
• New base classes can be extended as part of add-ons (setting the stage for future functionality (migrations etc.- ) Not a required change to add-ons but encouraged.
• allow_php config override now needs to be set in config.php to be able to enable PHP in templates.
• upload_file_name_blacklist config override renamed to upload_blocked_file_names
• exp_sites.site_pages data type has been changed to MEDIUMTEXT.
• Moved language files from system/ee/legacy folder to system/ee/language.
• Added $config['legacy_member_templates'] = 'y'; to allow legacy member functionality which is now not allowed by default see System Config Overrides.
• New member groups no longer have access to HTTP-protected templates by default #279.

ExpressionEngine 5.4.0

Enhancements 🚀

• Added relationship_entries_tagdata hook, which is functionally identical to the channel_entries_tagdata hook
• Added support for SameSite cookies via config override
• Added config override to ignore channel stats, which can lead to improved performance when using models.
• Add stats module action to run stats
• Added database column type selector for textarea and RTE fields (#464)
• Added post-upgrade and utility check for broken template tags and missing fieldtypes.
• Added Debug Tools utility.
• Added confirmation screen when attempting to update major versions.
• Adds namespacing to v2 upgrades for ease of upgrading from v2 to v5
• Added support to be able to upgrade directly from v2 to v5
• Improved XSS filtering for CP alerts
• Added support for PHP 8
• Added support for MySQL 8
• Implemented different approach to trigger before_channel_entry_delete extension hook.

Bug Fixes 💃🐛

• Fixed a bug #589 where putting line breaks in the {pagination_links} tag would cause rendering issues.
• Fixed an inconsistency #582 in the toggle fieldtype properties.
• Fixed a bug (#480) where there has been no notice when extensions are disabled.
• Fixed a bug (#499) where categories hidden from channel layout might get lost upon saving the entry.
• Fixed a bug (#496) where file was sent twice when using drag&drop upload.
• Fixed a bug (#487) where custom fields data were not available for extensions when deleting entry.
• Fixed a bug (#457) where accented characters in variables were not truncated properly
• Fixed a bug (#450) where pagination on tables was not working correctly when performing search for html tags.
• Fixed a bug (#438) where JS combo loader was throwing error if extra v was passed into URL.
• Fixed a bug (#432) where parent entries were not fetched for relationship field inside grid.
• Fixed a bug #431 where the EE Block/Allow list was not able to be downloaded from within the Block/Allow Module.
• Fixed a bug (#428) where Grid was throwing error PHP with certain fieldtypes.
• Fixed a bug (#421) where attachments were not sent from Communicate page.
• Fixed a bug (#419) where deprecated pagination code in member templates could cause a PHP error.
• Fixed a bug (#416) which prevented the version check in the CP footer from working properly.
• Added validation for category parent (#411)
• Fixed a bug (#383) where Moblog wasn’t functioning.
• Fixed a bug (#379) where comment subscription emails contained an invalid unsubscribe link.
• Fixed a bug (#283) where “field required” indicator was not showing a Grid column.
• Fixed a bug (#230) where accepting checksum in CP might result in wrong redirect when session type is “Session ID only”.
• Fixed a bug (#91, #417) where link button was not working and formatting not displayed in RTE field on frontend.
• Fixed a bug (#72) where Maximum rows limit was not respected in File Grid field.
• Fixed a bug (#53) where previous month link was not clickable in Channel Form datepicker.
• Fixed a bug where unsaved entries were not pulled in for live preview when using status="open|closed" parameter.
• Fixed a bug where checking for updates might produce an error.
• Fixed a bug where removing database record for template that is used as “No access redirect” would cause error
• Fixed a bug where searching entries in CP in content only could produce SQL error.
• Fixed a PHP error that could occur on publish if Pages was installed and hidden via layouts.
• Fixed a rare PHP warning in the typography class.
• Fixed a bug where some member pages did not display in the forums when using the forum tag on regular templates.
• Fixed a PHP warning in the control panel when IDN variants weren’t available on the server.
• Fixed a bug where a query string could be added to URLs erroneously.
• Altered a JavaScript filename that mod_security tended to object to.
• Fixed a bug where input data were assumed to be URL encoded, causing certain character sequences to be stripped when cleaned.

ExpressionEngine 5.3.2

• Updated support for PHP 7.4
• Fixed a bug ([#399] (#399)) where a user was required to enter a Pages URI when selecting a default template.
• Fixed a bug ([#404] (#404)) where removing a database record for a template that is used would cause an error.
• Fixed a bug where some installations on Windows OS where unable to upgrade via the 1 Click Updater.
• Fixed a bug where selecting the first checkbox in a table's row which contains multiple checkboxes, the last checkbox would also automatically be selected.
• Fixed a bug ([#406] (#406)) where an error was thrown if EE was installed on a server that did not have the iconv PHP extension installed.
• Fixed a bug where if cURL failed during a 1 Click Update, no error was thrown to let the user know what happened.

ExpressionEngine 5.3.1

• Added support for PHP 7.4
• Fixed a bug (#147) where is_system_on was changed to y when updating the CMS.
• Fixed a bug (#188) where image uploads where failing because of missing integer casting.
• Fixed a bug (#190) where omitting the return parameter for the {exp:consent:form} tag didn’t redirect to same page as it was submitted on per the docs.
• Fixed a bug (#248) where the after_channel_entry_save extension hook would run twice when saving a new channel entry.
• Fixed a bug (#292) where a user was unable to delete page uri or page template with default theme installed.
• Fixes a bug (#321) where a warning was not being displayed when an entry was saved if a URI was entered in the Pages module without also selecting a template.
• Fixed a bug (#337) where an entry with a URL title of n was being ignored.
• Fixed a bug (#346) where strpos Non-string needles will be interpreted as strings in the future.
• Fixed a bug (#382) where drag and drop fields were producing errors in MSM sites.

2.11.9

2.10.1

2.10.1