Skip to main content

Version 4.1.0 (2022-09-26)

This version includes significant changes to how passwords are handled so please review these release notes before updating:

  • Implemented the use of the standard WordPress password reset emails throughout rather than sending emails containing plain text passwords.

    Due to an ongoing focus on best practices regarding data privacy and security ActiveMember360 has been modified to use the default WordPress reset password emails.

    ActiveMember360 will still check to determine if it is appropriate to send a reset password email to a user. A reset password email will only be sent if the email submitted relates to an ActiveCampaign contact or WordPress user that satisfies the requirements to access the site as detailed within WordPress Login. ActiveMember360 will automatically create a WordPress user where required to enable sending to the reset password email.

    To support these changes to password handling:

  • Fix to the ActiveMember360 Payments module so if a purchaser only exists as a WordPress user, is not an ActiveCampaign contact and is not logged in when making the purchase they are not logged in after a successful purchase for security reasons.

  • Fix to button_style parameter when used with the shortcode [mbr_tag].

  • Fix to creating BuddyPress/BuddyBoss Groups when using PHP 8.X