• Miva Docs
• Reference Guide
• 10.04.00 Release Notes

Miva 10.04.00 Release Notes

• 10.00.00
• 10.01.00
• 10.01.02
• 10.01.03
• 10.02.00
• 10.03.00
• 10.03.01
• 10.04.00
• 10.04.01
• 10.04.02/03/04
• 10.05.00/01
• 10.05.02
• 10.06.00
• 10.07.00
• 10.07.01
• 10.07.02
• 10.08.00
• 10.08.01
• 10.08.02
• 10.08.03

10.04.00 Resources (Release Date: 5/24/2022)

• Release Notes, Customer Impact & Database Changes
• Shadows Template Changes
• Diff of Template Changes

Important: If your website is using Shadows, there are required changes you need to make. Review those template changes here.

Bugs Fixed

Bug ID	Component	Description
MM-11602	Administrative Interface	Order Processing, edit order, changing the order contents no longer automatically updates the shipping rate.
MM-11666	Administrative Interface	Order Processing > Recalculate Shipping Dialog: Trademark Symbol is being displayed as '®'
MM-11670	Affiliates	Processed By, Created By, and Voided By usernames are output unencoded
MM-11678	Core JSON	Quoted shipping is not displayed in the Order Recalculate Shipping dialog
MM-11803	Core JSON	Recalculating shipping charges fails to properly increment / decrement shipping module reference counts
MM-11784	Core Runtime	Insecure direct object reference allows customer addresses to be modified by unathenticated customers
MM-11671	CSSUI cssui_default_fw	Affiliate code is output unencoded
MM-11672	Module: purchaseorder	XSS in Purchase Order/Terms
MM-11665	Module: quote	Manage Quotes > Overlay / Calculate Shipping Dialog: Trademark Symbol is being displayed as '®'
MM-11676	Module: quote	Quoted shipping using a module other than quote results in a negative discount and adjustment item
MM-11624	Module: templatefeed	Multitext custom field values are no longer properly CSV encoded
MM-11805	Provisioning	PRV_Order_Calculate_Charges fails to properly increment / decrement shipping module reference counts
SHDWS-114	Shadows	Multiple places output "invalid_credentials" unencoded - Template Changes Required
SHDWS-115	Shadows	Bask "Undo" link is susceptible to XSS - Template Changes Required

Important: Miva 10.04.00 is marked as a Security release per PCI standards as it has updates to Miva payment modules. Because it is a Security Release, customers have 30 days from its release to update in order to avoid Non-Compliance Fees. Please review our full Non-Compliance Fee Policy Here