v1.18.3

osTicket v1.18.3

Enhancements

• mPDF: Upgrade To v8.2.7 (39cdd2b)
• htmLawed: Upgrade To 1.2.15 (877adf5)

Security

• security: Latest Patches 01/2026 (c646c8c, d1b634a, 6852e71, 8db4d37, 1552cfa, d832f24)

v1.17.7

osTicket v1.17.7

Enhancements

• mPDF: Upgrade To v8.2.7 (39cdd2b)
• htmLawed: Upgrade To 1.2.15 (877adf5)

Improvements

• join cdata table earlier (81ec256)
• issue: Content Management Errors (2a4fe6a)
• mail: SMTPUTF8 Backwards Compatibility (05b8719)
• issue: SVG MIME Type (a6309e2)
• Fix Banlist permission check (a7f14bf)
• issue: POP OAuth2 Error REGEX (10f38bd)
• issue: Kazakh Flag CSS (624c717)
• Fixing Argentinian flag (924380a)
• Update class.setup.php (8b6a0f0)
• Fixes for Implicitly marking parameters as nullable (573e849, ca13d88)
• issue: Date Column Interval (1e38901)
• issue: PGP + S/MIME Mail Parsing (9aff6b0)
• issue: Trim User Name (0fbafda)
• issue: Microsoft UTF-8 BOM (5074c03)
• issue: Empty Dept Error On Topic Update (f1ba934)
• Fix typo in 'Add New Instance' title (ae43441)
• Update class.file.php (1425fe1)
• issue: Regex OR Operator (331ca48)
• Revert "issue: Guest Session TTL" (c3819e4)

Security

• security: Latest Patches 01/2026 (c646c8c, d1b634a, 6852e71, 8db4d37, 1552cfa, d832f24)

v1.18.2

osTicket v1.18.2

Improvements

• OAuth2: Show Scopes and Enforce Strict Mode (a77cf53, 390555d)

v1.17.6

osTicket v1.17.6

Improvements

• Fix PR #6283: DB column value of "local backend" is 'client' and not 'local' (7805cd9)
• i18n: Tasks Department ID Missing (00bc6b1)
• issue: Checkbox Template Variable (09de958)
• Fixed mailfetch error message (cd4717a)
• issue: fix square characters being printed when printing tickets that's using languages like Thai (872a649, 2584403)
• issue: Position Styling.. Again (7f03a64, b843fb1)
• mysqli: Multi-Host Failure (0a8475f)
• issue: Task Last Respondent (5277c7a)
• i18n: Schedules getDays() (f2facda)
• issue: Referred Closed Tickets (a7b0711)
• php: Update Prerequisites (d331a44)
• i18n: Lang URL Param (fece6ff)
• mysql: Update Minimum Version (317ab96)
• Fix ajax path for AddRemoteCollaborator (6df6cd9)
• Fix staff mobile field class (f8455c8)
• patches: Latest 05/28/2024 (2d65cb7, 36b4c94, 854cf47, d9fe3ad)
• upgrade: Laminas-Mail (2.25.1) (c0a7416, 939a278, f658268)
• hotfix: Fix getRawEmail() (c26d840, 1eb7119)
• issue: Linked Icon annotation (6c096cc)
• fix(email): fix case sensitivity in "Action" header retrieval (0784359)
• Upgrade mimeDecode.php from v1.48 to v1.5.6 2016-08-28 (cbd78ac)
• mailer: sendmail() Failure (14e2057)
• php: 8.3 Support (a3931f4, b38db37, fea5e1e, 387a1c0, 136d372)
• issue: Ticket Relations (9426b2d)
• issue: Basic Search Selector (74b8bd0)
• mail: Reapply Memory Optimization (eaaa64d, ab76ffe)
• php: iconv Recommendation (33ecc3a)
• Ignore VS Code Workspace Files (0da2e0e)
• issue: Email Remote Backend Name (b54dd58)
• issue: Safari Response Content Disposition (64a5df6)
• api: DueDate and Other Errors (14814ae)
• issue: Multiselect List Export (f3bf855)
• issue: Image Annotation (aeeb285)
• user: List Import (fec70c4)
• issue: Latest SQL Warnings (9bdfde5)
• fields: Variable Name Validation (0724d1a)
• issue: Transfer Empty Comments Var (ed87b25)
• update: Composer symfony/process (59f2591)
• issue: Client ACL Staff File Download (8255b2e)
• update: PHP Deprecations & Warnings (84c14ac)
• issue: User Lookup Umlaut (504b0bf)
• issue: Department Field User Import (5c2b6a5)
• Fix force_https auto-enabling on settings page (3805bbf)
• queue: getTotal Incorrect Counts (4f137dc)
• issue: Referred Tickets Incorrect Queue Counts (b42cad6)
• php: 8.4 Support (a4c0f67, b4938b9, 5e5a9ff, fb9a39b)
• issue: Canned Response Access (b930a68)
• issue: Excessive Fetching Errors (c546a16)
• issue: Plain-text Base64 (216ded3)
• i18n: Crowdin API v2 (0ec6670)
• issue: iFrame Logins (3a5da66)
• issue: mimeDecode .eml Attachments (7fc3d8c)
• patches: Latest 11/18/2024 (416b548, 245e755)
• Revert part of 0784359 commit (ec76a20)

Security

• security: Latest Vulns 01/2025 (193f5fe, ab6672f)

v1.18.1

osTicket v1.18.1

Improvements

• Update upgrade.php (9fd83eb)
• Update upgrade.inc.php (8c8a7fd)
• update: PHP Requirements 1.18.x (1c0c670)
• CLI: Make sure manage util can be executed via CLI (0caf586)
• Update raphael-min.js to 2.3.0 (d4aeada)
• cli: Class Not Found (4689926)

v1.17.5

osTicket v1.17.5

Improvements

• update: README.md PHP & Laminas (4baf9dc, 555c4a7, 88294e2, 30a4a6e)
• issue: putenv() Disabled (3c0d5f4)
• i18n: Update Signing (9870627, 776c0f2)
• i18n: Flags Position & Codes (3ee1111, 45f5b5b)
• mailer: Undefined SmtpAccount::getName() (560a4f1)
• issue: SystemSessionHandler (7e17daa)
• issue: Status List Overflow (1deee34)
• faq: Category Notes Images (ccca0f5)
• patches: Latest 10/03/2023 (65e1229, 48e8501, a8d42a9, 4475e03, bd03471, 64b8c81, 070eefc, 1775ce7)
• mail: NoValidateCert (d3c140c)
• issue: Choice/Selection Field Searches (00e22fa)
• stubs: Add stubs to pass lint test (895c723)
• issue: Canned Response Inline Images (a503c16)
• format: Viewable Images Bug (2a41288)

Security

• issue: CSP Headers (6228f64)
• security: Latest Vulns 09/2023 (04f4e61, 88a87a3, c4ad48d, 37cf835)
• issue: User Account Creation (777e6f0)

v1.18

osTicket v1.18

Enhancements

• update: Laminas-Mail (66fa10a, bb45d37)

Improvements

• Database: Change Plugin Name to varchar(255) (aac546d)
• update: MAJOR_VERSION (3eac42e)

v1.17.4

osTicket v1.17.4

Improvements

• issue: Thread Entry Actions z-index (215a0ce)
• oauth2: Strict Matching Bug (e014ffd)
• Make string translatable (1105cde)
• issue: Inline-Images Canned Responses (4493b12)
• issue: Remove Old Login Code (e17ad46)
• issue: i18n Audit Exports (45dd7c4)
• Bug: Custom File Upload Field Config (6371269, 7283ac8, 902b5d3)
• issue: Duplicate User Copy/Paste Import (b304cdb)
• issue: Relocate Typeahead JS/CSS Files (62cd406)
• issue: strftime() Deprecation (3fe132c)
• jquery: Update To 3.7.0 (ffa23da)
• issue: glob() Empty Array (c64a261)
• issue: Email Only Attachment (9e45f3f)
• installer: Change Email (a11aee2)

Security

• security: Latest Vulns 06/2023 (86c2ba0, 6924417, 73b997a, ae37925, e4bfb00)

v1.17.3

osTicket v1.17.3

Enhancements

• oauth2: Strict Matching (7275d67, b7718be, ca913ba, cb3625e, f531718, c0cd8b1)
• OAuth2 Resource Owner (5c239ad)

Improvements

• session: Regenerate Session Id (d585324)
• fetcher: Mail Fetcher / Parser Error Handling (d4d9c42, 0a4498b)
• mysql: Support Sidecar Database Proxies (246aaa4)
• Misc. Fixes (e6beeb9, 24fd507, eac9960, 10af29a)
• fetcher: Default Department (f410d4e)
• issue: LDAP Multi-Instance Fatal Error (f648604)
• issue: TicketDenied errno (6de7cf4)
• session: User Logged Out (00d409d)
• Uncaught Error: Call to a member function getId() on bool (af83896)
• Mailer: Inline Images (7efbdfd, 8815d08, 64a8abf)

v1.16.6

osTicket v1.16.6

Improvements

• session: Collab View Ticket (6afe0ef)
• issue: Static forTask() (1079011)
• issue: Featured FAQs (8df0958)
• print: Hidden Thread Events (f63fc67)
• issue: Does Not Have A Value (d47fc2b)
• issue: Disabled Queues Run Counts (3ff3ce9)
• issue: Queue Counts Incorrect (2428cc5)
• jquery: Update jQueryUI 1.13.2 (b896f70)
• issue: Department Export (5418cf2)
• jquery: Update To 3.6.3 (8d39a4c)
• i18n: make-pot (74274b5)
• update: README PHP Version (6087bc5)
• issue: mPDF Font Files (427a8aa)
• issue: FileUpload False (8dd2ab6)
• Add translation for "last resort" standard column labels (cb52804)
• add translation for task status (46c005a)
• issue: getRealPath() Stub (32a229a)

Security

• security: Latest Security Patches 03/2023 (86f9693, 091ddba, ec60439, daee20f, 9fb01bc, 619ce0f, 343a2b4, 8a55c29, e2c8f79, ee7ce3d, 263f71a)