Configuration - 2.2.4
Correction of vulnerabilities
- XSS (Cross-Site Scripting) and LFI (Local File Inclusion) vulnerabilities fixed in the product.
- Fix applied to a vulnerability that allowed a request parameter to enable the debug mode referring to connection to the database of a PHP service.
System PHP version updated to 8.3.
Control Plane audit trail
In this version, a specific audit trail has been implemented for the actions performed in the Control Plane of SoftExpert Suite.
This resource enables greater control and traceability for operations executed by admin users.
Check out the features:
- Automatic event recording.
-
Display of event lists with the following columns:
◦ Date and time.
◦ User's name.
◦ Type of executed event.
◦ Screen on which the event took place. -
Advanced filters in the list:
◦ Textual search field.
◦ Event type filter.
◦ Date filter.
◦ User filter.

New billing screen with contract details
As of version 2.2.4, the Manage account (CM056) menu features a new tab.
The Billing tab allows users to clearly view all active contracts for their accounts and track their financial obligations.
Check out the features of the new screen:
-
Display of all current contracts referring to the selected month or year.
◦ Displayed data: contract #, type, and validity period. -
Display of billings referring to the selected month or year.
◦ Displayed data: item, value, due date, status, and link to the invoice. - Restricted permission for display only to users with authorized access to the Manage account (CM056) menu.
- Month and year filters applied by default, with the customer being able to change them.

Check out the latest improvements made to this component: