下面是版本v1.3.8中包含的修改:

* 新增: login pages now have a built-in security token, which prevents XSRF and other hacks
* 新增: Ability to ban user accounts via admin (edit customer)
* 新增: Home & Per-page metatags can now be defined in the meta_tags.php language file
* 新增: EZ-Page metatags can now be defined in the meta_tags.php language file
* 新增: additional pages added to robots-exclusion list prevent indexing of non-product pages
* 新增: Admin server-info page now reports database-size info and various PHP settings
* 新增: If customer logs in and had items in their saved shopping cart, they are now taken to their cart and shown a message alerting them to the fact that those items have been merged with their new cart.
* 新增: Quick Customer address listing of whole address book
* 新增: manufacturer pulldown can skip manufacturers with no associated products
* 新增: warning in admin if Welcome Coupon is approaching expiry.
* 新增: Admin orders are now searchable on product name or model, or order number
* 新增: Month numbers added to CC expiry dates in pulldowns of core payment modules
* 新增: Customer comments can be included on packing slip and invoice
* 新增: Authorize.net E-Check module added
* 新增: nochex_apc payment module added and integrated with core
* 改进: Authorize.net SIM module overhaul, including MD5 hash support, CVV, debug
* 改进: Authorize.net AIM module improvements, including MD5 hash support, capt/void
* 改进: Customers page in admin now shows open GV balances, and is sortable on same
* 改进: Textarea counter for text-input-attribute fields improved to ignore spaces and CR
* 改进: Improvements to the affiliate-feedback info during checkout-process
* 改进: PayPal IPN now supports PDT to allow real-time-handling of PayPal Standard transactions without having to wait for IPN in all cases. Requires that merchant has enabled PDT and enters their encryption key/token.
* 改进: Session security improved with additional sanitization

* 修改: CSS — Some template ID tags changed to classes because rendered from inside a loop
* 修改: Updated some payment modules to display “not configured” alerts if appropriate
* 修改: table CAPTIONs moved into lang file for upcoming-products code
* 修改: USPS – updates to handle various 2007 changes made by USPS
* 修改: Installer now also sets shipping country to match store country during initial setup
* 修改: Installer now detects CURL support more effectively
* 修改: added CURL testing script and IPN communication check tool to extras folder
* 修改: magic_quotes_sybase is now disabled at runtime if server has it enabled
* 修改: paypal IPN postbacks no longer use SSL due to so many hosts not having SSL support in their fopen wrapper configurations.
* 修改: added worio.com and panscient spiders to spider detection list
* 修改: “NF” changed to “NL” for province of Newfoundland Canada
* 修改: PayPal IPN now uses init_system instead of ipn_application_top, to minimize likelihood of addons causing IPN transactions to fail.
* 修改: ezpages now uses mediumtext field type instead of the smaller text type
* 修改: payment modules no longer able to store entire CC/CVV numbers. PCI rules.
* 修改: admin activity log now tracks login attempts, thus allowing identification of brute-force login tries; also stores longer referrer data
* 修改: db structure change to db_cache and session tables, allowing larger datatypes
* 修改: hard-coded delimiters on attribute prices and weights moved to _info language files
* 修改: renamed “Credit Card” module in admin to “Credit Card – Offline Processing” for clarity
* 修改: admin payment modules are now more friendly when discovering mismatched language files vs payment modules, ie: for cases where newbies upload files to wrong place
* 修改: default minimum city length set to 2 instead of 3, per code suggestion
* 修改: whos_online referrer data truncated to suit database data type restrictions
* 修改: orders_products_attributes field changed from BLOB to TEXT since not binary
* 修改: admin can send newsletters to self for testing purposes
* 修改: customer_firstname added to $_SESSION
* 修改: ezpages links no longer include &chapter=0
* 修改: added field-definition checker to sniffer class
* 修改: split_page_results now handles ‘distinct’ queries
* 修改: payment modules accepting credit cards now give the number and name of months
* 修改: SMTP email password now shows as **** in admin instead of plain text
* 修改: ot_total order-total module can no longer be ‘removed’ via admin, for safety
* 修改: zen_order_id fields in paypal and linkpoint_api tables changed to order_id to prevent confusion encountered by folks fiddling in raw database export files
* 修改: email system improvements to minimize dumping due to content challenges
* 修改: basic support added for Gmail mail support as long as webhost supports SSL/TLS
* 修改: partial CC digits now included in order-confirmation email
* 修改: if problems found with configure.php, instead of going directly to zc_install, we now present a more friendly page with some instructions and FAQ links
* 修改: Added audience entry for “non-purchasing” customers for sending newsletters to

* 修复: Optimized the way cpath is calculated … runs faster now, and is more relevant in subcats
* 修复: Centerboxes now generate URLs containing relevant cPath
* 修复: CURL proxy recommendation for GoDaddy updated to named FQDN instead of IP
* 修复: Admin session-fixation problem fixed
* 修复: Downloads occasionally would croak if buffering was enabled
* 修复: login and create-account code synchronized
* 修复: improvements to featured/special modules for faster db queries
* 修复: XHTML validation fixes to several sideboxes
* 修复: Added missing CC types
* 修复: numerous MySQL5 fixes
* 修复: version-history display in admin was always skipping the current version date info. Fixed.
* 修复: some noindex pages were missing from the robots-skip list
* 修复: invalid cPath pages were being spidered improperly
* 修复: minor performance improvements on options_values_manager for attribute-heavy sites
* 修复: remove three cases where php short tags were used, standardizing on long tags.
* 修复: paypal ipn module now supports the locale code for all countries, in accordance with their updated api spec

* 补丁: Always Show Category wasn’t always showing proper category for feature/new/special
* 补丁: tax-rate calc fixed in admin product-edit page
* 补丁: Prices were not displaying on quantity discounts if store-status mode was set to 1
* 补丁: upcoming products were not selected properly due to a time miscalc
* 补丁: Coupon/GV Tax calculations improved
* 补丁: 100% coupon calculation improvements
* 补丁: Group Pricing module updated to use new tax recalculation logic, added consistency
* 补丁: tax calc functions improved
* 补丁: Minimum Order feature bug repaired
* 补丁: fix popen() vulnerability in the 3rd-party phpMailer system
* 补丁: disabled CURL warnings in payment modules when module inactive
* 补丁: products_price_manager was not properly handling non-entered values in MySQL5
* 补丁: products_price_manager fixed default product selection for empty categories
* 补丁: products_price_manager fix calculation on discounts to work with from Price and Special
* 补丁: linkpoint_api payment module fix for empty fields
* 补丁: developer toolkit improvements to handle quotes better
* 补丁: order_total module would occasionally not properly detect template override
* 补丁: metatag bug was causing call-for-price products to show a 0.00 price in title bar
* 补丁: timeout template was missing /div if customer was logged in
* 补丁: GV/Coupon resets were not always happening after completion of purchase
* 补丁: closed several unclosed dir->open() calls which were consuming extra resource handles
* 补丁: some search checkboxes not being remembered when returning to search page
* 补丁: download filesize info was not showing if the download had expired
* 补丁: download button was showing even if downloads had expired, in certain cases
* 补丁: download expiry details occasionally incorrect in admin
* 补丁: coupon-admin would sometimes not display restricted products properly
* 补丁: additional sanitization of email addresses before sending emails
* 补丁: table/zone rate modules missing percentage charges on last setting if based on price
* 补丁: navigation issues in admin product price manager tools
* 补丁: email format-selection fields were not stored properly if not shown to customer
* 补丁: payment modules didn’t always submit the proper referrer IP address if proxied
* 补丁: default currency selector anomalies fixed
* 补丁: rich-text editor bug in metatag section (shouldn’t be activated), same on newsletters
* 补丁: page-not-found header bug resolved
* 补丁: admin version-display had extraneous code
* 补丁: data-type enforcement changes in multiple places
* 补丁: categories-icon link and image didn’t always properly match listing
* 补丁: fix missing flag for customer comments on listing
* 补丁: fix ability to use extra-boxes folder with gv menu
* 补丁: removed hard-coded language content from contact-us page
* 补丁: email system traps for extraneous @ and spaces, and provide friendlier error messages
* 补丁: additional-images module problem in PHP5 fixed
* 补丁: when customer-forced-to-login mode is active, privacy page was being blocked
* 补丁: duplicate-key bug on db_cache method
* 补丁: Free Charger payment module had order-status conflict with $0 orders caused by GV
* 补丁: added 5-min timer to Store Manager update actions
* 补丁: Fix dropdown errors when Alpha sorter is disabled and stopping normal Cats and Manufacturer dropdown from displaying
* 补丁: some category name html was showing in metatags
* 补丁: when add-to-cart doesn’t redirect to shopping cart, sometimes product_id was lost
* 补丁: text-only emails were missing the email-disclaimer text
* 补丁: ‘SHOW_PRODUCT_INFO_COLUMNS_ALSO_PURCHASED_PRODUCTS’ key was updated incorrectly from v127 to v130. Is now fixed by upgrading database.
* 补丁: media manager template was using duplicate CSS IDs. Changed to classes in stylesheet
* 补丁: tell-a-friend “back” button invalid ALT text
* 补丁: zen_clean_html function wasn’t stripping all required tags
* 补丁: fixed missing body tag on salemaker editor
* 补丁: trim trailing spaces from image data, which were causing empty image placeholders
* 补丁: empty html content in emails now handled properly
* 补丁: shipping estimator pages not rendering consistently, also fixed address display
* 补丁: shipping estimator was not showing quotes if module limited to certain zone
* 补丁: UPS – updated Worldwide Saver option
* 补丁: Fix bug on shopping-cart with shipping by price where attributes prices were not being included/excluded for Virtual or Always Free Shipping products
* 补丁: Fix Order Totals to not include javascript code for coupon names
* 补丁: Discount Coupons were missing start and end dates on HTML/TEXT emails
* 补丁: admin no longer asks for customer fax number if disabled
* 补丁: no longer shows “send a GV” after GV balance is fully used
* 补丁: coupon-restriction page had conflicts in naming of some html objects, breaking inputs
* 补丁: if you deleted the active language but didn’t switch to another one before adding another, then you’d end up with blank product/category names/descriptions for the new lang
* 补丁: specials-expiry wasn’t honoring midnight properly
* 补丁: admin order-search no longer mistakenly loses search criteria if empty info entered
* 补丁: fix ez-pages behaviour — incorrect use of target=_blank
* 补丁: fix missing fax/phone information on create-account “extra” emails
* 补丁: use native session_write_close to ensure session stuff is always written out, regardless
* 补丁: HTML emails were not always sharing full footer details with text emails
* 补丁: HTML emails were now always showing proper line-breaks between product details
* 补丁: HTML emails from payment modules weren’t sending content properly
* 补丁: restored sort order to the list of products on a purchase
* 补丁: company name missing on edit of additional addresses
* 补丁: record-company filter wasn’t properly filtered for records, and was focused on music
* 补丁: fixed notifier typo in order class
* 补丁: some payment modules were not using “default” order-status properly, thus orders could disappear from list unless searched for specifically
* 补丁: split-login-page mistaken error messages removed
* 补丁: PDF downloads were sometimes encountering symlink errors, or streaming bad data. Now captures those errors. Also handles filenames containing symbols
* 补丁: changed download timeout to 20 minutes if server allows it, to aid in larger downloads not ending prematurely
* 补丁: restrictions were not being passed to newly created sub-categories
* 补丁: item shipping was mistakenly resetting order count
* 补丁: tpl_main_page had wrong ID– is now indexHome on home page
* 补丁: Fixed Salemaker error on popup for More Info missing Categories Name
* 补丁: group pricing division-by-zero error when tax amount was 0
* 补丁: customer_authorization problem fixed, including left/right/header/footer issues
* 补丁: when deleting categories, meta-tag data wasn’t being removed properly
* 补丁: prevent drawing of extra fieldsets on checkout-shipping page if modules disabled
* 补丁: document-general price was showing sale pricing … but shouldn’t
* 补丁: shipping estimator page was showing weights differently from shopping cart
* 补丁: media manager interface in admin wasn’t handling pagination properly
* 补丁: text-only emails from coupon-admin weren’t including description
* 补丁: text emails weren’t including disclaimers properly, thus getting rejected in some cases
* 补丁: PayPal Express checkout wasn’t passing coupon discounts or shipping taxes properly
* 补丁: fmod_round problems resolved — was causing problems with min/max calcs
* 补丁: text-only email “previews” in admin weren’t handling line-breaks correctly
* 补丁: coupon code wasn’t releasing properly post-order or on invalid product
* 补丁: admin tax-class page was allowing deletion of actively-assigned tax classes
* 补丁: PayPal Express Checkout button was enabled even if module was restricted or if order was over the 10,000 USD threshold
* 补丁: use onKeyUp instead of onChange in coupon-redemption field (onchange is for pulldowns)
* 补丁: search engine spiders could trigger PHP errors in shopping_cart sidebox
* 补丁: techsupp.php was using php “short” tags in a few places. Changed to normal tags.