From time to time it happens. We have an XSS issue. Reported by Aman Rai. More Infos later. Version vm4.4.4 has a fix to prevent them.
[Update] After some further investigation together with the Joomla core team, this issue can not be exploited in the latest Joomla versions. If you have Joomla 5.1.4 or later or 4.4.8 or later installed, the issue is already fixed. We did not check against joomla 3.
[Update 2] Sorry guys, a little error found. If you store a product with media, the checkbox "is image" is not preselected. The fix is ready, but this time we want to take more time for testing to prevent such stupid errors (mea culpa).
- Adjustments for Tableupdater to prevent unecessary updating of keys in mysql8
- vmUri extended whitelist, function works now also with given query
- vRequest extended function getVar to work with given source
- install.sql fixed TINYINT(4) against TINYINT(1)
- added the option to add no searchfield
- added setConvertInt also for plugin tables
- added property "isImage" for medias, works BC
- fixed currency if none is set
- fixed adding of new states in the new admin layout
- fixed problem in router
- user registration fix if not in checkout