ServiceDesk Plus ReadMe

Vulnerability

• SD-91948 : CVE-2020-35682 : Authentication Bypass Vulnerability during SAML login reported by Zikos

• SD-82224 : In Advance Analytics integration, Instance/Scheduled sync fails even after successful completion of initial sync.
• SD-81194 : In some scenarios, multiple scheduled reports generated on the same time contain incorrect report titles.
• SD-82937 : The Performed by column name in the System log viewer is updated with an incorrect name.

• SD-82155: While approving the recommendation for a change from a user login an irrelevant error message is shown.
• SD-81135: A duplicate Item can be saved under Others Category by adding some extra space in the Item field.

Requests

• SD-80777 : An error message is thrown while an approver takes approval action from the home page.
• SD-80743 : In some cases, a blank approval notification email is triggered.
• SD-80672 : Comments entered by the previous stage approvers are not shown properly in the approval action page for the next stage approver.
• SD-71986 : In service requests, the approval process is paused if approvers of an intermediate approval stage are deleted.
• SD-80289 : A service request with the Assign technician only after Service Request approval option enabled in its workflow is not assigned to a technician/backup technician based on the date of approval.
• SD-80906 : Disabling the default request template from self-service portal settings displays an error when the requester tries to add a new request.

Admin

• SD-80233 : In Admin >> Service Catalog >> Service Categories, editing a business service category displays IT service category in the header.

Others

• SD-81673 : In MSSQL setup, Upgrade freezes in Non-English OS.

Vulnerability

• SD-80778 : CSRF vulnerability in Tasks under Notification rules while performing add/edit/delete operations.

Home

• SD-69351 : An error message is thrown while editing the reminder page.
• SD-80256 : In requester login, when an user minimizes and maximizes the self-service portal page, it gets stuck there and expands only after a refreshing a page.

Requests

• SD-80678 : Performance issues in request fields configured with dependency using field and form rules.
• SD-80658 : Requester details are not changed as per field and form rules while navigating to other tickets via the left-side panel.
• SD-49227 : The copied images from outlook are not getting pasted into SDP.
• SD-80231 : Text wrap is not applied for notes when the font and size are changed.

Changes

• SD-80052 : A status change notification triggered by a change workflow is sent to users configured in other change workflows besides the correct users.
• SD-80363 : Unable to open the Change Calendar View in Chrome.

Projects

• SD-80501 : In Gantt view of Projects, navigating between milestones from the popup displays an error message.
• SD-80429 : Performing column search in Members tab under Projects >> Project Details Page does not display the row count in some scenarios.

Tasks

• SD-80785 : In tasks, when a technician without SD Admin role creates a task filter with Group as a condition, the group drop-down does not load properly.

Assets

• SD-79205 : In Assign Ownership pop-up if we click the Save button multiple times, the application creates multiple loaned assets.

Admin

• SD-80358 : In Admin >> Users >> Active Directory, clicking the refresh button starts importing users from the Active Directory. Also, unable to import users if the Move Assets option is disabled.
• SD-80648 : Under Admin >> Users >> LDAP, unable to import users by mapping the Reporting To field when the manager of a user is disabled.
• SD-80125 : Unable to delete multiple user groups from the Admin configurations.
• SD-80814 : Unable to assign more than two organization roles when creating a new site/region.
• SD-75206 : Null pointer exception occurs while sending a periodic survey.
• SD-77471 : Technician list view page takes longer time to load.
• SD-81192 : Not able to change inactive sites to active sites.

Reports

• SD-80356 : Performance issue in Reports.

Vulnerability

• SD-78239 : CSRF vulnerability when performing add/update/delete operations under some admin configurations.
• SD-78181 : CSRF vulnerability in Admin >>Support Groups while performing add/update/delete operations.

Assets

• SD-80433 : When the 'Save' button in the asset-user association pop-up is clicked more than once, multiple entries are added.
• SD-69467 : Virtual machines (VMs) are duplicated instead of getting updated in the following cases:
  • Failed resolution of a VM's fully qualified domain name (FQDN) in the initial or subsequent scans.
  • Scanning a VM after renaming it in its host.
• SD-77556 : Asset and warranty expiry notifications are sent every day from the configured date instead of being sent only on that day.
• SD-80313 : Under assets, using Unassigned filter option in the list view page displays an error message.
• SD-80209 : Under assets, providing an invalid entry for the cost field does not display an error message.
• SD-79086 : While adding a new scan credential an irrelevant error pop-up is shown.
• SD-79768 : Workstations with Mac OS are not getting inventoried if the soundcard details are missing in the workstations.
• SD-78286 : Unable to view all IP addresses of an asset in the asset details page. You can now view them by expanding the IP address(es) displayed in the asset title or by clicking View More under the IP Address field.

Purchase

• SD-79670 : Users with full permissions to the purchase module are unable to export the purchase list view data.
• SD-79352 : Under Purchase Requests, date fields except created date are populated with incorrect dates.

API

• SD-79361 : Unable to add asset tag by using CMDB API.
• SD-79356 : Unable to add/update VM hosts and virtual machines by using CMDB API.
• SD-80405 : Unable to add/update an asset's IP Address by using CMDB API.

Vulnerability :

• SD-80226 : Privilege escalation vulnerability while viewing requester details section.
• SD-79989 : CVE-2019-15045, CVE-2019-15046 : Unauthenticated sensitive information leakage during FOS replication. Please follow the instructions mentioned in this doc for the replication to work seamlessly.

Home :

• SD-38684 : Technicians are not able to select user groups for creating announcements.

Requests :

• SD-80302, SD-79281 : Requesters are not able to access archived requests list view.
• SD-80599 : If the default request template name is changed, then the default request add page is not getting loaded for requesters.
• SD-80745 : Technicians could close requests without the required permissions.

Solution :

• SD-72003 : The number of views for each solution is not updated across the application.

Assets :

• SD-80460 : SCCM integration does not populate asset data.

Admin :

• SD-78582 : Survey outgoing emails contain garbled values for certain fields in non-English languages, such as Chinese, Japanese, and Korean.
• SD-80396 : Under admin configurations, error messages are displayed in popups meant for success messages when copying rules between templates.
• SD-76740 : While configuring Notification Rules for Mobile App, some of the notification rules are not getting saved.

General :

• SD-78981 : Unable to reindex modules.

Vulnerability :

• SD-77197 : Vulnerability in query report generation.

Requests :

• SD-79896 : In the request details page, unless you collapse and expand the conversations, Reply and Forward icons of individual notifications are not displayed.
• SD-80157 : Under requests, an empty line is added to the resolution whenever it is updated.
• SD-79663 : In requests and request templates, an error is not thrown when non-numeric data is copy-pasted to a 'Numeric' field.
• SD-76153 : Under Requests, adding the resolution using a template for the first time displays an alert.
• SD-78319 : When Allow requesters to close their own resolved requests? is set to No under Self Service Portal settings, and a technician without request closing permission tries to close their own request, an inappropriate error message is thrown.
• SD-77804 : In some scenarios, technicians are unable to close their own requests using the link in the notification mail.
• SD-80167 : Error is thrown when updating a request using V1 API.
• SD-79996 : Approval is not sent to service approvers while adding a request via API. The issue occurs if the service approver is also an org role holder.
• SD-80162 : After taking the approval action (From approval tab under Request details page) and clicking on Go to home page from the thank you page, the home page gets loaded on the thank you page instead of closing the thank you page and redirecting to the main home page.

Admin :

• SD-79531 : In request templates, unable to add negative values in decimal fields.
• SD-80628 : When configuring the default request template, the name and description fields are editable.

Reports :

• SD-80239 : If the application runs on a PostgreSQL setup, custom schedules and scheduled reports that use query are not executed.
• SD-63602 : Under Reports, error in the schema displayed for Changes data model.

Integrations :

• SD-80088 : Scheduled data sync between ServiceDesk Plus and Zoho Analytics fails in certain cases due to API call limit.

Dashboard :

• SD-78943 : Clicking on the asset count in any asset related widgets in Dashboards is not getting redirected to relevant list view page. The issue occurs only for non-SDAdmin users.

Requests :

• SD-77177 : If you open the request catalog menu while you're on the request list view page, the request catalog does not scroll.
• SD-78318 : Unable to add attachments if the attachment name contains '+' character.
• SD-74543, SD-80072 : Under mail fetching, inline images from Outlook and Gmail are not fetched properly into the application when the image name contains space.
• SD-79625 : On configuring editor and approver when creating a service request, notifications are sent to both the editor and the approver simultaneously.
• SD-78848 : In request creation form for service requests, Select Approvers field is slow to load when the number of approvers exceeds 6000.
• SD-78642 : In the approval page of a service request, the entire comment of the approver from the previous stage is not shown when hovering over the comment.
• SD-77440 : Under notification rules, unable to include approver comments in email template of Notify requester when a request is approved/ rejected option.
• SD-79730 : No error is thrown when a request is updated with an invalid requester name. The existing requester's name is preserved even after updating the request.
• SD-79990 : Unable to create a request using the default request templates in some scenarios.
• SD-76874 : Clicking on a request from the advance search request list view and hitting the back button from the request details page does not redirect to the advance search request list view instead it redirects to the main request list view page.

Projects :

• SD-78977 : Bullets added to a project description are not displayed in the project details page.
• SD-79510 : Scheduled End Time field is not populated for the associated change under Project >> Change that initiated this Project section.

Assets :

• SD-76865 : Improved the UI of Add Asset/Component pop-up window, accessed from Assets >> All assets In Store >> New >> Add asset through form.
• SD-78292 : While trying to import a non-IT product type via CSV, it gets added as an IT product type.
• SD-78503 : French characters are not displayed properly for auto populated fields (Department/Site) in the Assign/Associate pop-up.
• SD-79417 : In MSSQL setups, clicking the Relationship tab for any CI/Asset under CMDB & Assets module throws a blank page.

Purchase :

• SD-70968 : Purchase Request additional fields are not getting reflected in the Purchase Request details page after migrating to the latest version.

Admin :

• SD-79906 : When configuring Field And Form Rules, a system-defined field with more than 500 values is populated with the value ID.
• SD-78520 : On updating user information via LDAP import, additional fields other than the updated fields are reset.
• SD-79776 : Unable to add multiple email IDs in the Exception List under Admin >> Mail Server Settings. The issue occurs when the Disable request creation by email option is enabled and if the total character count of the email IDs added exceeds 100.
• SD-77927 : Inactive departments are shown in the Departmental Roles section under Organizational Roles.
• SD-79802 : Changing the application language to Chinese displays special characters in Endpoint Central (formerly Desktop Central) Actions drop-down.

Others :

• SD-80296 : Migration fails due to inconsistency in the purchase module data.

Vulnerability

• SD-70573 : Vulnerability issues in Reports.
• SD-79017 : (CVE-2019-12537) XSS vulnerability in search fields of the Purchase module.
• SD-79021 : (CVE-2019-12595) XSS vulnerability under Admin >> Discovery >> Remote control tools.
• SD-79022 : (CVE-2019-12596) XSS vulnerability in the software list view page.
• SD-79023 : (CVE-2019-12597) XSS vulnerability in select actions of the asset details page.
• SD-79018 : (CVE-2019-12539) XSS vulnerability in using global search for Purchase.
• SD-78402 : (CVE-2019-12959) SSRF vulnerability fixed.
• SD-78593 : SSRF vulnerability (CVE-2019-12994) while configuring central server settings in the remote server.

Home

• SD-57004 : Under Home >> Scheduler, any dates displayed in requests, reminders, tasks, problems, changes, or backup technicians are not in the personalized format.

Requests

• SD-74894 : On enabling the Allow Self Approval of Requests option under the self-service portal settings, the approver details of a service request get swapped when the requester/on behalf user/technician is one of the approvers.
• SD-79195 : When a request's template is modified using global edit, fields such as Created Date, Responded Date, DueBy Date, Response DueBy Time, Completed Date, and Resolved Date disappear.
• SD-79283 : If you delete a service/incident/project additional field while the application is displayed in any non-English languages, you get a response message that contains only question marks.
• SD-78995 : Request Collaboration view contains technician names who had left the associated request details page after updating the request.
• SD-31165 : When Add/Edit request form is submitted without filling out any mandatory Date fields, the corresponding field is not automatically focused for the user.
• SD-78669 : The Advanced search does not display results when you provide select request criteria and hit 'Enter' instead of 'OK'.
• SD-78555 : A technician without the scope to create requests is able to split a request from the conversations of another request.
• SD-78570 : Unable to access the resolution attachments through Attachments API (GET operation).
• SD-79002 : Unable to add or modify a negative decimal value in a decimal additional field via inline edit.
• SD-77817 : Request gets created in the logged-in technician's name if the permission Add Requester role is disabled for the technician.
• SD-77618 : Custom-created request filters are not shown in the Merge Request dialog box when we try to merge requests from the request details page.
• SD-77926 : Requesters can reopen closed requests through the portal.

Projects

• SD-78527 : Unable to edit custom filters under projects/tasks list view page.

Admin

• SD-79066 : Unable to preview a request template from inside Field and Form Rules of the corresponding template.
• SD-79190 : Field and Form rules that contain asset-based resource criteria do not work.
• SD-79589 : Field and From rules configured for the Group field to add select options does not work. The issue occurs only if the site associated with the group refers to default settings.
• SD-78647 : In custom triggers, while showing the criteria for technicians, only the technicians from the default site and "Not associated to any site get listed.
• SD-70842 : Under Admin >> Helpdesk Customizer >> Custom Triggers, the positions of Add New Action and Organize Actions buttons are swapped.

Reports

• SD-77343 : Additional filters are not working properly for default purchase reports.
• SD-77188 : Under Reports, filter criteria of custom reports are displayed in English after changing the language of the application.

Assets

• SD-79436: Asset details fetched in the delta scan by Endpoint Central (formerly Desktop Central) are not updated in ServiceDesk Plus while being integrated with Endpoint Central (formerly Desktop Central) . This initiates a full scan by Endpoint Central (formerly Desktop Central) .

Others

• SD-47525 : Unable to add product by using the Quick Actions menu.
• SD-79165 : Unable to upload the profile picture in Edge and Internet Explorer.
• SD-79470 : Unable to send messages in Live Chat after downloading files shared in the chat.

Admin

• SD-79252 : Clicking on Edit filter button in Junk notification filter throws an error.
• SD-78963 : On changing the application from HTTP to HTTPS via Admin Security Settings, outgoing email notifications are not appended with HTTPS as expected.
• SD-78750 : Not able to update the survey email configuration if the email description length exceeds 3000 characters.
• SD-79993 : Unable to update fields under Admin » Organizational Details » Organization Details.
• SD-79498 : Unable to update the organization details under Admin >> Organization Details.

Others

• SD-77997 : Performance issue in CMDB, Requests, Admin Role, and Work logs.

Requests

• SD-78798 : SLA Escalation mail is not sent if the Escalate After/Before time is configured as 0 days 0 hours 0 mins.
• SD-78637 : Unable to edit a request if the associated site of the request is already deleted. The issue occurs if FAFR is applied to that request to remove a technician.
• SD-78580 : Worklog gets added twice when adding a resolution with worklog.
• SD-78083 : Encoded content is displayed while editing a resolution containing special characters.
• SD-78075 : Overdue tickets which are in closed status shows incorrect delay by time.
• SD-78495 : Font size is not maintained while sending mail from the request module.
• SD-79163 : Performance issue occurs when a request has a huge description.
• SD-78007 : When a technician replies to a request after enabling a status change to follow, the Request Type gets reset.
• SD-78721 : On configuring Execute Script action using $COMPLETE_V3_JSON_FILE under Request Custom Triggers/Business Rules, the temporary JSON file contains fields that are not included in the template with field value as null.
• SD-79459 : While accessing Incident / Request Catalog, the page goes blank if Other category is present in the catalog and when the logged-in user does not have access to any one of the templates listed under a category. The issue occurs only when Reorder option has been used.

Admin

• SD-79439 : Unable to select support groups in Live Chat.
• SD-79294 : Incident and Service' default icon is in PNG format.

Tasks

• SD-78705 : Site and Group filter values are not loaded in Tasks while choosing filter condition under New Custom filter.

Vulnerability :

• SD-79020: XSS vulnerability in request module (CVE-2019-12540).

Vulnerability

• SD-78572 : XSS vulnerability while accessing older APIs.
• SD-77811 : Privilege escalation vulnerability has been fixed.

Requests

• SD-77748 : Unable to archive requests whose associated survey comments contain more than 500 characters.

Projects

• SD-78394 : In projects, timesheet tab does not render the technician's work logs when sorted by the time spent.

Purchase

• SD-73075 : Unable to receive Purchase Orders placed in Assets Category if item name exceeds 100 characters.

Reports

• SD-78050 : Line break is missing in the description field of mails sent from Reports module.

Admin

• SD-77433 : Unable to update the product cost under Admin >> Asset Management >> Product.
• SD-79004 : Tasks and worklog tables data are not pushed in Analytics.
• SD-78521 : In some scenarios, mail fetching stops.
• SD-78487 : IDs present in paragraph tags are cleared in scripts used in field and form rules.
• SD-77947 : Line breaks are missing when requests are created in plain text format through EWS mail server.
• SD-77855 : Inline images are not found in the request description when the content id of the inline images contains $ symbol. This issue occurs when a request is created through email.

Community

• SD-78846 & SD-79491 : Unnecessary error entries get recorded into the system log after updating to version 10018

Vulnerability

• SD-78908: Privlege escalation vulnerability (CVE-2019-12252) in the Solutions module.

Home

• SD-78483: Sample Announcement title is misleading.

Requests

• SD-73825: The Request collaboration functionality is now available on the Edit Request form.
• SD-75656: If the incoming server email addresses or their aliases are specified in the E-mail Id(s) To Notify field of requests, the notification sent is fetched and treated as a normal conversation; also the request is reopened.
• SD-77973: In the request list view, on-hold requests are listed when Requests due today or My Requests Due Today filter is selected.
• SD-71591: The insert image icon is missing in the resolution's text editor of the add/edit request form.
• SD-77743: In the Request Details page, when Impact or Urgency is edited, changing Priority as defined by Priority Matrix, the associated Field and Form rule configured to be triggered upon Priority change breaks.
• SD-77798: When a field value currently being used in a request is deleted from the application, the request cannot be updated. The issue occurs only when Field and Form rules are configured to mandate the field.
• SD-77873: When a task is updated under the tasks tab of a request, task list view page refreshes and rolls back to the top of the page.
• SD-77949: Unable to update resolution to requests that are configured with resource questions under conditions in the On Form Submit Field and Form rule.
• SD-77985: When a request's resolution is updated, the page does not scroll up automatically.
• SD-76841: If the technician removes and adds a new attachment in the request reply with the same name as the one removed, then the new attachment is replaced with the old attachment in the request reply.
• SD-77815: An unnecessary popup is shown alerting users to add resolution even if the resolution is added. Issue occurs if resolution is mandated for the template which is used to create the request.
• SD-77218: While performing 'Advanced Search under Requests tab, the status column names are shortened.
• SD-77588: No option to filter Pending Problems while associating a Request to a Problem from the Request Details view by clicking on Search Problems.
• SD-77902: Multi Select fields inside requests sometimes contain a horizontal scroll bar.
• SD-77916: Creating a request and associating a change from the same request displays only three Changes in the Associate Change to Incident pop-up window.
• SD-78579: Under Dependency in the request details page, users can now view requests which are shared with them, regardless of the scope criteria.
• SD-78577: With Description and Resolution mandated in the request closure rules, when a request is closed from its Resolution tab and another request is opened without navigating to a different module, the latter's description is replaced with the former's.
• SD-77988: In the request list view, the horizontal scroll bar does not work after a bulk action is performed on requests, such as editing, closing, linking, and merging.
• SD-78494: Technicians can now edit associated requesters (users added as requesters to the application) from the request details page.

Change

• SD-78607: While making any field of a change request as non-mandatory for onfield change event via Field and Form Rules, the field label gets removed.
• SD-77818: New change notification emails containing the same subject are not appended under the same conversations.

Assets

• SD-75025: Incorrect translation of the Mapping Field options under Assets >> Barcode >> Barcode Generation >> Barcode generation for existing assets >> Using Asset Data (Generation Method) in any non-English language.
• SD-77414: DoS attack detected during bar code generation.
• SD-78115: Under CMDB, the relationship list view inside a CI does not capture all relationships.
• SD-76786: Under Asset Details>>Relationships, closed changes are not displayed under the All Changes filter.

Admin

• SD-78049: Unable to create request from an incident template mandated with the Priority field. The issue occurs only when the Priority Matrix is configured with the Allow requesters and technicians to override the Priority Matrix option disabled.
• SD-78111: Description content entered in the request template disappears. The issue occurs if we switch to the requester tab and try to save the template.
• SD-77744: Issue in saving incident templates in IE 11.
• SD-77879: Application triggers request un-picked notification to group members even after the request is assigned to a technician. The issue occurs if the Assign Technician only after Service Request Approval option is enabled in the template.
• SD-76320: Unable to select a template name with apostrophe (',") in Change Request Template to option in Business Rules.
• SD-67436: Line breaks in multi-line values of request additional fields are not preserved in reply notifications.
• SD-78085: The $CS.setDescription() function used in Field and Form rules updates request resolution.
• SD-77706: SMS notifications configured in business rules are not triggered when more than one technician is selected as the recipient.
• SD-77518: Unable to associate more than 25 custom Change Role technicians to a change template.
• SD-75553: Unable to update requester's email id through CMDB API.
• SD-77793: If the user created in AD has only a space included in the department attribute, then after importing the user into the application, department with empty strings are created in ServiceDesk Plus.
• SD-77626: Removing the ADMP Integration is not deleting the auth token of the users from the database.
• SD-65812: Incorrect information displayed in the help card under Admin >> Self-Service Portal Settings.
• SD-78951: Custom schedule does not work if reports are added in Arguments.

Reports

• SD-77809: Zoho Analytics URL has been changed under Advanced Analytics.
• SD-77163,SD-77827: Executing the saved custom report appends 'SURVEYID' in the query.

Others

• SD-66758: "The license violation" warning messages need to be included in i18N keys for the Chinese language.
• SD-76803: Requesters are unable to login via the mobile client view from the application
• SD-77843: Domain users are unable to view and generate File Protection Password for their individual accounts.
• SD-28969: Grammatically incorrect error message displayed to the user accessing restricted requests

Request:

• SD-77990: Clean up schedule keeps running even though there is no request in the trash.

Others:

• SD-78298, SD-78308, SD-77454, SD-77920, SD-78309: Performance issues in catalog templates and API.

Vulnerability:

• SD-77126: Reflected XSS vulnerability found in all listviews.
• SD-77943 : Privilege escalation vulnerability found in custom query report.

Requests:

• SD-77989/SD-78062 : In some scenarios, adding or editing a request resolution with content size more than 16kB causes out of memory crash.

Admin:

• SD-77842: When a user enters a valid email address while configuring Incoming EWS server, "Invalid email address" alert is thrown. The issue occurs if the second part (usually ".com") of the email id has more than 4 characters.

Reports:

• SD-78061 : Under Reports >> New Query Report, access to tables containing users' sensitive information via direct and encoded queries is restricted.

• SD-78311: When the Priority matrix is enabled and the "Allow requesters and technicians to override the Priority Matrix" option is disabled, users are unable to update the request [Inline edit and from resolution].

Vulnerability :

• SD-73969 : CSRF vulnerability in archived requests and advanced search section of the application.
• SD-77131 : Stored XSS vulnerability fixed.
• SD-76878 : Brute force attack has been detected in password reset page.
• SD-65744 : Vulnerability in bundled user (administrator & guest) credentials.
• SD-77415 : Any authenticated user is able to access application's server log information.
• SD-77981 : XXE vulnerability in the user profile section.
• SD-78003 : Directory traversal vulnerability in file uploads.

Dashboard :

• SD-70603 : "No request found in list" is shown while accessing Open Requests under Dashboard for technician's having "\" in their name.
• SD-74310 : Performance issues in dashboard widgets.

Requests :

• SD-70334 : If there is any exception while clearing the trash requests through schedule, the trash clean up through schedule is not processed further. If the exception is because of a particular request, all the other trash requests are also not processed.
• SD-76705 : When we copy a Solution to a Request's Resolution, the attachments in the Solution are not copied to the Resolution.
• SD-77340 : Status change comments are not recorded in history unless 'status change comment mandatory' is marked 'yes' in the self-service portal settings.
• SD-73193 : SLA escalation performance issue.
• SD-76672 : Insert link (URLs) in the request description is not framed properly.
• SD-77760 : When a user raises a service request on behalf of another user, notifications configured in the request template workflow are sent to the roles associated with both users.
• SD-77286 : In Firefox, when request properties are updated, the Request Details page automatically scrolls to the top.
• SD-77303 : Values saved for Radio and Checkbox fields in service and incident requests are not preserved when the request is edited.
• SD-77317 : Grammarly does not function inside the rich-text editor across the application.
• SD-77450 : Multiple inline images without distinct names in incoming emails are all replaced with one of the images. The issue occurs if the incoming mail server is configured with any protocol other than EWS.
• SD-77370 : When you download request attachments, the pop-up window displayed contains incorrect file type. The issue occurs only in Firefox.
• SD-77595 : While a technician adds stage after the approval of a request, only the Approver field is displayed. The Subject and Description fields are not displayed.
• SD-77150 : Probable solutions are not suggested to the technician.
• SD-76500 : When Site settings are updated, the Group field gets reset even if the group is under the same site.
• SD-77417 : Pinned/Unpinned left pane in request details page is not maintained in IE browser.
• SD-77304 : The rich-text editor across the application allows you to remove hyperlinks in bulk.
• SD-77154 : Advanced search breaks when there are several Requesters.
• SD-75817 : Count mismatch between Request List View and Unassigned and Open Request widgets.
• SD-77334 : Priority Matrix gets applied to requests on form load events despite manually setting the priority via the global edit option. The issue occurs even if the option (Allow requesters and technicians to override the Priority Matrix) is enabled.
• SD-73071 : Incorrect display of value under Dueby Time in SLA.
• SD-73380 : Under SLA, the Dueby time does not revert to NULL when no response time is configured.
• SD-75597 : Under Conversations, the Email IDs to be notified are not displayed.
• SD-77589 : Unable to add attachments in add new task pop-ups.
• SD-77365 : FAFR: When requester field is disabled via field and form rules, users are able to update the requester field by using 'Search requester list' icon in the request edit page.
• SD-77830 : Whenever field and form rules are applied on resources in service requests, the resource section enlarges.
• SD-76195 : Option for technicians to view linked requests from the approval page
• SD-77928 : The Add Reminder window that you open inside requests has been enlarged.

Changes :

• SD-70633 : Able to change 'Asset Involved' field after disabling it through Field and Form Rules (FAFR).
• SD-70635 : Changes listed in Calendar View isn't filtered as per the Approved/Unapproved filter in Home Page.
• SD-76631 : Set value for the Services Affected field is not working in change field and form rules.
• SD-77431 : In Add Change page, Service Affected fields are not populated in alphabetical order.
• SD-77775 : Error occurs while adding a Change when a mandatory Change role in the template is deleted from the application.

Assets :

• SD-76533 : Option to prioritize sysName over the DNSName for choosing a deviceName during SNMP scan.
• SD-74424 : Relationships tab appears blank when CIs are moved from one CI type to another.
• SD-65756 : Unable to update an asset's barcode through add asset form and CSV file.
• SD-71862 : Technicians with full access to Assets is unable to edit assets that are not associated with any site.
• SD-77134 : VMware scan fails when VM is not resolved in the DNS.
• SD-76681 : For Cisco IP phones, success status is not updated.
• SD-76263 : Software license allocation is not updated when software allocated to any installation is deallocated. This results in data inconsistency in software licensed and unlicensed list views. Assets --> Software-> Scanned Software list view
• SD-76438 : Unable to scan SNMP Devices of a particular Device Type (Lexmark Printer, 3Com Router, Xedia Access Point, Room Sensor, Avtech tempager Room Sensor).
• SD-77272 : To avoid slow performance while viewing assets' audit details, an index is created on the AUDITTIME column in the AUDITHISTORY table.
• SD-77444 : Asset Explorer mobile app issues have been fixed.
• SD-69961 : Error occurs when we Add asset through form after filtering the list view based on criteria.

CMDB :

• SD-76388 : On clicking More Information, an issue occurs in CMDB business view if the language is set to Arabic. CMDB-->New Business View-->Save Business View-->More Information.
• SD-77522 : Unable to update a requester's department using API.

Purchase :

• SD-74665 : Option to choose PO items based on the part number.

Admin :

• SD-77461 : You can now rename all approval stages (Stage One to Stage Five) in the service request template under Admin >> General >> Translations.
• SD-76620 : Error when clicking on 'Save and Add Item' on editing Sub-Category.
• SD-77619 : Request Template is now enhanced with HTML Editor.
• SD-77799 : Unable to preview an incident template that is assigned with a service category.
• SD-76387 : URL is garbled in the incident template's description section.
• SD-77496 : When Site settings are changed from Copy Default to Refer Default, the Support Groups populated under Chat Settings still show the groups under Copy Default settings.
• SD-77427 : Attachment names in scheduled reports are displayed incorrectly if EWS is configured for the outgoing mail server.
• SD-77443 : Exception when more than six users are added to a user group.
• SD-77650 : Under Admin >> Security Settings >> Advanced >> Add security response headers, the placeholder displayed for X-XSS-Protection has been corrected (semicolon at the end of the value has been removed).
• SD-73062 : If we add a new network immediately after editing an existing network under Admin >> Discovery >> Network Scan, it replaces the network that was edited instead of creating a new one.
• SD-77439 : Unable to import users from Active Directory (AD) into ServiceDesk Plus if the OUs in AD contain comma at the end of their names.
• SD-53572 : Option to Enable/Disable a Business Rule by clicking the respective icons in the business rule list view.
• SD-73514 : Change Template's stage and status are not set as mandatory in the default emergency template.
• SD-76296 : Unable to delete IT services. Admin->IT Services.
• SD-78077 : Belize is missed under the country drop-down in the Sites configuration page.

Reports :

• SD-77136 : When we run a query report, the values are coming in decimals. But in the tabular report, the cost value is coming as an integer.
• SD-70403 : Empty matrix reports will display an appropriate message regarding the data unavailability.
• SD-75333 : If the font is set to Roboto in the Excel file of reports, data is sometimes lost.

Integrations :

• SD-77797 : DC Integration: Unable to load iframe. The issue occurs in the DC build version 10.0.335.
• SD-76875 : Under an AD user login, unable to connect to a desktop remotely from ServiceDesk Plus integrated with Password Manager Pro.

Others :

• SD-77445 : The error message displayed in the following case is not accurate: Requesters use API or mobile app and attach files to a request that's either approved by at least one user or closed.
• SD-71823 : Czech language characters in reports are only partially exported in PDF files. To resolve the issue, please choose the application language as Czech under Personalize and then export the reports.
• SD-77386 : Clean up schedule takes too long to complete causing the application to crash.
• SD-77306 : Application crashes upon using the Delete All option on system log entries, if there are more than fifty lakh entries.
• SD-77698 : If the dynamic notification menu is disabled in the GlobalConfig table using database query, the following features do not work - Broadcast Message, Request Collaboration and Live Chat
• SD-77627 : Issue in identifying Status Code in API Calls in certain scenarios.
• SD-77484 : Issue occurs while assigning a task owner via API.

• SD-77871 : Privilege Escalation Vulnerability (CVE-2019-10008) and User Enumeration Vulnerability (CVE-2019-10273) in login page has been fixed.

Home

• SD-69247: If the email address of a service request approver is duplicated, the approval is listed in the Home page of all users with the duplicate email address.

Dashboard

• SD-76840 : Default support group display count is increased to 100 in the dashboard filter.

Request

• SD-53012: In request update notifications, attachment updates are not included.
• SD-57164: Business Rule is not getting applied if the criteria contain department or group value as none.
• SD-69214: SLA (Response and Resolution time) calculation issue occurs in Time Elapsed Analysis Chart.
• SD-73392: Unable to see the Request Type field in the Request form in Professional edition and in editions with add-on Service Catalog/CMDB/Project.
• SD-76304: Font type applied to a resolution content is not maintained while editing the resolution from request details page. The issue occurs only with a few font types.
• SD-76507: On auto refresh, the request list view page is scrolled back to the top.
• SD-77141: Field and form rules configured for one request gets applied to another request if the Assigned to field is modified manually in request list view for the requests involved.
• SD-77349: Unable to open linked requests in a new tab by clicking the request ID in the details page.
• SD-77273: The fact that Subject will not be overwritten during template conversion in service and incident requests is now included in the message displayed before the conversion.
• SD-77214: While changing Status in service and incident requests, the Status Change Comment field requires a double-click to input the value. The issue occurs only in IE and Edge browsers.

Asset

• SD-76687 : Alignment issue occurs after adding a shipping and billing address in PR.

Admin

• SD-76305: In the Turkish language, August month is displayed twice under the monthly schedule for a preventive maintenance task.
• SD-76807: Task notification is not sent when EWS mail server is configured in the application.
• SD-76825: Unable to send PR notifications when EWS (only) mail server is configured.
• SD-76722: Unable to reorder incident templates within a category. The issue occurs only if the list had been reordered at least once and a template within the category was deleted.

Reports

• SD-70015: Time taken to generate a report gets longer if the description and resolution fields are included in it.

Others:

• SD-77156: The progress bar that indicates the application upgrade process is distorted.
• SD-75963: When the application is displayed in Arabic, all Date/Time fields across the product have the hours and minutes displaced.
• SD-76321 : Alignment issue in the description of a task after migrating to the latest version.
• SD-76059: Purchase order and CMDB list views have an empty space at the bottom of the pages. Also, the list views are not rendered to the screen size in large monitors.
• SD-76122: Option to search the exact word in the Japanese language without using double quotes in global search (Requests and Solutions modules).
• SD-75331: License expiry banner will be displayed only for the SDAdmin.

Vulnerability :

• SD-67820 : XSS vulnerability in attachment description of a change request.
• SD-77176 : XSS vulnerability under tasks in home page.

Dashboard :

• SD-66321 : When a support group's name contains special characters, then the corresponding filter is not applied when the support group is selected in the dashboard.

Requests :

• SD-76313 : Closed without Requester's acknowledgment message appears on the RHS panel of Request details page even if No, don't prompt a message is enabled under Confirm User Acknowledgement in Request Closing Rules.
• SD-76446 : Actions >> Print Preview : Technician column is missing under the work log list view in the request details page.
• SD-75876, SD-76713, SD-76548 : When the option Do not assign technician before a service request is approved is enabled in a service template, and a technician gets assigned to a request created using that template, an unwanted alert is shown indicating that the template's approval rule is overridden even if the request is approved.
• SD-76543 : Links inserted in a request's description is not opening in a new tab.
• SD-76726 : Keyboard shortcut for a new request reply (-r) is invoked when typing 'r' in the Close Comments field in IE.
• SD-76869 : Request archiving fails in certain scenarios.
• SD-76701 : In some scenarios, users are unable to close a request when priority matrix is enabled.
• SD-76390 : Employee ID, Job Title and VIP User icon are missing when a requester's info is viewed from request detail page.
• SD-76418 : When two FAFR (On-Field change) are configured for category/sub-category and site/department to change each others' values, it forms an infinite loop.
• SD-74732 : Unable to convert incidents to service requests by overwriting field values.
• SD-74014 : Requests List View filter is not retained when the requests are viewed from the dashboard.

Changes :

• SD-76688 : In the new change request form, Workflow will be empty if no workflow is associated with the default change template.
• SD-76386 : Unable to send change-related notifications to email addresses that contain domain names with more than three characters.
• SD-69270 : In the change details page, icons to view the details of the Change Manager and the Change Owner will no more be displayed to the requester.
• SD-60001 : When a change request's template is modified without overwriting the current template values, Description becomes truncated.

Projects :

• SD-77287 : Newly added custom filters are not getting listed under the projects list view.
• SD-75276 : Recently modified criteria of a custom filter is not getting displayed while editing the custom filter again in IE browser.
• SD-77162 : The time chart in the project gantt view is off by +1 hour when viewing by Hourly basis.

Assets :

• SD-76406 : Loading issue occurs when you click the Assets tab if there are more products in the inventory.
• SD-76629 : Unable to remove the IP address of any asset other than workstations and servers.
• SD-76769 : When the number of barcodes is high, then the print preview does not load all the barcodes.
• SD-74111 : Schedule scan takes too long to complete.
• SD-76662 : Inconsistencies in displaying the allocated software license key and scanned license key within the application.

Admin :

• SD-74686 : Values set in Priority Matrix is not applied in request templates.

Reports :

• SD-77380 : Unable to generate report when the description has only <br\> tag.

Others :

• SD-35145 : Displayed calendar text is not translated into non-English languages.
• SD-76366 : i18n keys related issues in MDM.
• SD-76594 : In DC integrated SDP build, chat icon near requester name is missing in request details page.

Requests :

• SD-76587 : Filter set for request details page list view in one browser, it gets reflected in another browser.
• SD-75795 : When there are more list view personalizations for request related list views then adding an additional field takes more time.
• SD-72806 & SD-70615 : Going forward requesters can only reopen their resolved requests via web client if the option "Allow requesters to reopen their own requests" is enabled in the self-service portal.
• SD-72436 : When a technician with request add and view permission tries to duplicate a request, an exception is thrown.
• SD-71727 : When "reason" attribute is used to add notes while updating a request via API, it is not getting captured in history.
• SD-70034 : Technician field for Custom Completed Requests are not retained when a technician is deleted.

Projects :

• SD-75208 : In task comment notification template, entity ID for Project, Milestone and Task are not given.

Assets :

• SD-76277 : During asset scanning, a duplicate key exception occurs if the asset names after renaming (by the application) coincide with the existing names.
• SD-71368 : Product Type modification window opened from Actions in the asset details page contains garbled text. The issue occurs only when the application is displayed in certain non-English languages.

Purchase :

• SD-70381 : Additional fields are not displayed in the details page of assets and workstations that are added through purchase orders.

Admin :

• SD-70511 : Business rule set with Mode is None and Group is None criteria is not getting applied.
• SD-69915 : An irrelevant error message added under Community >> System Log Viewer for each schedule of Software License Notification.
• SD-75577 : In self-service portal's landing page, a misleading translated content is used for the German language.
• SD-76009 : Employee ID field is not getting imported from LDAP.

Requests :

• SD-76618 : In a specific scenario, Technician field value is not set.
• SD-76385 : Unable to make an already added Incident additional field common to both Incidents and Service Requests.
• SD-76332 : Unable to set values for check-box type resource field via field and form rule.
• SD-76306 : In IE, the shortcut key NR is wrongly interpreted while trying to type values ("NR") in text fields of a request.
• SD-76105, SD-75977 : When a user changes the request status to completed while editing a resolution, Go to Work log window appears with a message stating work log is mandatory as per request closing rules.
• SD-76020 : Work log type is not accessible through API.
• SD-75552 : Info/help icon is not shown on keyboard navigation (tabbing) in New/Edit Request Page.
• SD-75527 : Request ID will be static on the request details page window while scrolling.
• SD-75203 : While performing inline edits on requests, the request page freezes or a mandatory alert is shown for an unavailable field. The issue occurs when mandated request fields are hidden via FAFR form load.
• SD-76307 : Service request template value is updated with incident template value when one user tries to update the incident request, meanwhile, another user converts it to the service request.

Vulnerability :

• SD-76400 : MIME-sniffing vulnerability in purchase requests.
• SD-76357 : Phishing vulnerability in login page of the application.

Projects :

• SD-76492 : Unable to export Project module's Gantt view as a PDF.

Admin :

• SD-76671 : A deleted Project additional field continues to be displayed in Project Templates.
• SD-76399 : Inserting hyperlink to any text with $EntityLink variable doesn't work in Task Comments Notification Template.
• SD-76365 : Issue while adding comma separated values to Multi Select field.

Others :

• SD-76159 : Memory allocation in the bundled PostgreSQL database has been increased. To effect this in Linux installations, you must manually add or modify the following parameter values under /etc/sysctl.conf :
  kernel.shmmax = 536870912
  kernel.shmall = 262144
  Then, execute the sudo sysctl -p /etc/sysctl.conf command to reload the configurations.
  Note: PostgreSQL will not be started in Linux machines if you fail to update the parameters discussed above.
• SD-75077 : PUT and DELETE operation in v3 API isn't working in a few customer environments.
• SD-72381 : Performance related issue is fixed.

Vulnerability :

• SD-75130 : Serialization and de-serialization vulnerability while importing requests from XLS.
• SD-74542 : CVE-2019-8394 : Arbitrary file upload vulnerability in login page customization.

Requests :

• SD-76704 : Unable to view and download attachments present in a conversation.
• SD-76152 : Incorrect product content under Approval configuration of Incident / Service templates.
• SD-75979 & SD-32942 : Business Rules is considering HTML content for "Description" criterion.
• SD-71588 : Custom Trigger is getting applied for bulk edit request operation even when the condition(Status) does not match.
• SD-66733 : First Response SLA is violated even though the ticket is put in On Hold (stop timer) status.
• SD-75335 : While applying email command to a service request, the service request is converted to the default template incident request.

Changes :

• SD-70621 : Asset scan from the change details page fails.

Assets :

• SD-75523 : Out of memory error occurs if we configure Class A IP address full range while performing exclude scan.
• SD-73391 : Unable to sort additional attributes of date type in assets and CI list views.
• SD-54661 : Duplicate key exception occurs while scanning a workstation which was modified as a Firewall.

Purchase :

• SD-70162 : Scroll bar is not working in purchase order list view.

Admin :

• SD-74906 : My Modification count is not updated after resetting the translations. Admin -->Translations.
• SD-75308 : Translations under Problem/Change management and Service catalog are not proper in the French language setups.
• SD-75097 : In Request Life Cycle, templates under the deleted service category are shown in the templates list.
• SD-74945 : Currency symbol of Great Britain Pound, Gibraltar Pound, Chinese Yuan, and Japanese Yen is not displayed properly under Admin >> Currency.
• SD-70893 : Change template edits are saved but not displayed on the UI. The issue occurs only if the template is associated with a site that's configured with Refer Settings under Admin >> Organizational Details >> Sites.
• SD-70783 : Duplicate key exception occurs while adding ServiceTag to Invalid Service Tag list.
• SD-72972 : The word 'Left'(meaning "remaining")is translated as left(meaning "direction") in Projects and other places for French Language setups.
• SD-75362 : Incorrect image resolution information is given in the self-service portal settings page.
• SD-73839 : Private domains are now listed in the user-merge list view. Admin --> Requesters --> Merge user
• SD-74325 : When a report (with a name containing non-English characters) is emailed, the name is encoded at the receiver's end.

Others :

• SD-70543 : Sub menus in application close unexpectedly when users mouse over the tooltip.

Vulnerability :

• SD-75134 : Serialization vulnerability fixed under Admin --> Distributed Asset scan --> Change as Remote server (while importing central server's site).
• SD-75133 : Serialization vulnerability fixed under Solutions --> Actions --> Import Solution.
• SD-69987 : Possibility of information disclosure vulnerability in login page.

Dashboard :

• SD-73124 : Clicking the pending tasks link from task summary widget in Dashboard opens up all tasks.

Requests :

• SD-45611 : Failure in sending approval email is not captured in the request's History.
• SD-75355 : While converting service to incident request in the second stage approval, the triggered incident approval is in the second stage instead of first.
• SD-75532 : File attachment with requests by using Global edit is not captured in History.
• SD-76083 : Technician field value in service requests gets changed to Unassigned during automated close in some scenarios.
• SD-74125 : Survey exclusion configured with email criteria does not function properly.
• SD-74373 : User with add/edit request task permission can delete a work log within a task in the request.
• SD-75969 : Scheduled trash cleanup tasks are not performed for Exe builds post 9400.
• SD-76155 : When a new approval stage is added manually to a service request, there is no information in the history about who added the approval stage.
• SD-75364, SD-76161 : Unable to preview and download attachments from request if the attachment's name contains non-latin characters.
• SD-75550 : On downloading the Cyrillic attachments from request, the name of downloaded file contains only the extension (xls).

Projects :

• SD-75610 : While editing and updating the Requested by field using the inline edit option, the department field is not getting updated accordingly.

Assets :

• SD-74808 : Previous day of the loan date is shown instead of the current date in the loan registry list view while extending the loan.
• SD-73277 : Deleted product types are shown in the Purchase and Asset modules' Product Type filter.

Purchase :

• SD-70930 : Estimated cost is not updated while adding/editing a purchase request if there are special characters in the Item name for the selected vendor.

Admin :

• SD-76466 : If a default change workflow is edited, and "Set as Default" option is unchecked and then checked again, then the workflow is updated to false.
• SD-75945 : $ variable suggestion is not displayed for reply templates under Admin -> Reply Template.
• SD-74250 : Add New Product page is displayed in English after changing the language to Japanese/Chinese from the Personalize tab.
• SD-74357 : Space string can be saved as a pick list option in pick list additional fields.
• SD-74733 : Unable to configure more than 300 conditions under Admin >> Users >> User Groups.

Others :

• SD-74369 : During application upgrade, duplicate fields (created in earlier versions) will be renamed if the duplicate had been added by the user as an additional field. Otherwise, the duplicate fields will be removed.

Vulnerability :

• SD-22229 : Vulnerability in the Solution module fixed.

Requests

• SD-74577 : History is updated wrongly when a request is resolved from pending stop timer status using the global edit option. The issue occurs if the automated close is enabled.
• SD-72829 : If a requester's department gets changed after a request creation, then the request's department is also getting changed.
• SD-69290 : Unable to save Allowed Exceptions in Data Archiving.
• SD-70641,SD-72380,SD-69076 : In request add page, the requester details are not getting populated. The issue occurs if the requester is associated to an asset which has single or double quotes in the name field.
• SD-71148 : Adding resolution to a ticket from the resolution template does not overwrite the existing resolution but rather gets added to the existing resolution.
• SD-75299 : Update button is missing in request details page while editing through inline edit.
• SD-74664 : Technician collaboration view count is not updated in the request, if one of the technician (collaborator) moves to the previous request by clicking the browser back button from request details page.
• SD-74484 : Attachment name is trimmed while clicking Print Preview in request details page.
• SD-74654 : Back button is missing in the add dependency (actions) window while editing from the request details page.
• SD-74220 : When there is an unsaved resolution and an user tries to navigate to the next or previous request, the alert appears twice.
• SD-75583, SD-76012 : After searching a request in request list view, users are unable to update the Status of that request.
• SD-74704 : Under Advanced Search and New Custom View in Requests, sites are not listed alphabetically.
• SD-75163 : Technician can now view the request associated with the assigned task.
• SD-75545 : Browser auto complete of the subject field in add new request page is disabled.
• SD-75725 : Chat conversation is appended as a system reply instead of requester reply once the chat is closed.
• SD-74518 : Emails incoming from the Outlook Web App are threaded inaccurately in ServiceDesk Plus because of incorrect References header.
• SD-73197 : In-Reply-To headers of outgoing emails are incorrect.
• SD-76339 : Approval page appears in English instead of Danish.

Change :

• SD-74474 : Unable to update category in change details page using the spot edit option.
• SD-71010 : Custom page title with special characters is jumbled in the change details page and the problem details page.
• SD-74401 : When Spot edit is used for the change details section, some fields aren't displayed properly. The issue occurs only when the change is raised on a template that has Category removed.
• SD-72072 : Group is displayed incorrectly in the View Changes API for changes assigned with a site that's referred to the default site.
• SD-75511 : Unable to update change fields using API if the change is not assigned a group.

Assets :

• SD-74313 : Breakage: Assets: Comments field shown while changing an asset's state is also shown while editing an asset.
• SD-75530 : Alert message in unnecessarily displayed while moving assets from one department to another (which is not associated to any site).

Purchase :

• SD-74362 : Unable to close Purchase Orders created from Purchase Requests. The issue occurs if the Purchase Requests have value for 'Requested by' field.
• SD-73425 : Item name modified from Admin > Product will get reflected for purchase orders and purchase requests in open status from now on.

Admin :

• SD-74308 : Unable to remove service catalog additional fields (pick list) values.
• SD-75565 : Removed groups are still displayed under associated area of incident templates.
• SD-75556 : In some Linux environments, users are unable to add/update request templates.
• SD-75704 : Unable to delete a question and save a resource in one go. It takes a couple of attempts to get saved.
• SD-44560 : Select field in Organize Business Rule window is now re-sizable.
• SD-75572 : Unable to add variables $FullName $FirstName etc, to the description and save button doesn't work in the Click Here to customize the approval reminder mail notification window under Admin >> Self-Service Portal >> Approval Settings.
• SD-75569 : If the task template count exceeds 250, users are unable to access remaining templates from the request template workflow.
• SD-74123 : Under Admin >> Change/Problem Management >> Change Workflow, the default change workflow has the Set as Default option unchecked.
• SD-75385 : Unable to remove the technician assigned for Change Manager under Admin >> Helpdesk Customizer >> Category.
• SD-74079 : Users imported from LDAP contain incorrect Site and Department values.
• SD-76092 : When mails are sent to groups without inline images, mail fetching is aborted.

Others :

• SD-76133 : In Linux setups, users are unable to upload files.

Vulnerability :

• SD-73857 : Vulnerability fixed under Admin >> Project Management >> Project Status.
• SD-74544 : Directory traversal vulnerability in dashboard widgets.
• SD-35675 , SD-46452 : Restricting File Upload

  Restrict users from uploading vulnerable files to the application by blacklisting them based on file properties such as file extension or file content type. You can allow only specific files to be uploaded by whitelisting them. You can perform these operations by passing database queries. Click here to know more.

  Note : To prevent vulnerabilities during file upload, empty file upload will not be permitted anymore.

Home :

• SD-75383 : Technician home page customization is not reflected in non-admin roles.

Requests :

• SD-75258 : Unable to add work log by using Timer on the request list view page. Also, the Timer entry is not preserved.
• SD-75386 : Unable to attach files in the .msg format with a request by using the Drag option.
• SD-75705 : Russian characters are displayed as question marks on the Share Request window.

Assets :

• SD-71613 : Virtual machines having the same name but in different domains replace each other when scanned.
• SD-73547 : When a technician assigned to a site creates a license, it gets assigned automatically to the org site if the available site is less than 2. Also, incorrect license count is shown in the software details page.
• SD-75098 : Scanned software list view is not getting rendered after selecting the site filter.
• SD-74769 : Assets in the loanable assets list disappears after performing a scan.

CMDB :

• SD-74085 : Unable to import CIs for a custom CI type when the custom date field has a different format in the CSV and a different format chosen during import.

Admin :

• SD-75611 : Under Chat Settings, 100 values will be loaded at one time for Exclude chat for group(s) and Exclude chat for site(s) fields.

Others :

• SD-75380 : Background image of the login page couldn't be adjusted to the browser size.
• SD-75265 : Performance issue occurs due to lack of caching of the redundant queries.
• SD-73838 : Serbia and Montenegro have been added to the installation wizard countries list.
• SD-75968 : Application goes blank if we select Traditional Chinese language under the Personalize menu.

Requests :

• SD-66023 : Unable to search/view a shared Request using the global search option.
• SD-70453 : Priority of a request is not updated as per the values set in the priority matrix if the request is created via mail.
• SD-68698 : Priority-based business rule does not work if the request is created by a requester who cannot set the priority. The issue occurs if the priority is set by the priority matrix.
• SD-71590 : Technician with scope for the template is unable to create a request via API.
• SD -71804 : Request search in technician details page displays requests of other users with a similar first name. The issue occurs if the display name contains a comma.
• SD-71940 : When requester/technician field of a request has multiple users (separated by a comma) then clicking on 'View Requests' from user details page shows requests belonging to other users with similar first names.

Admin :

• SD-69452 : More variables are added for business description in business rule notifications.
• SD-75293 : The loading icon shown while copying field and form rule in incident/service template is not getting disappeared after a successful rule copy.
• SD-75300 : Templates marked for no further usage are also listed in the copy rules drop-down in field and form rule for incident and service templates.
• SD- 75368, SD-75561 : The count of the Radio/Multi-select additional fields configured in Global Config can be exceeded while adding a new additional field.
• SD- 75123 : Form Customizer : Service template's add page lists the service category field in the available field list.
• SD- 73367 : Request Template's API lists the service templates for setups using a standard license.

Vulnerability :

• SD-74131 : IDOR vulnerability in request attachments.
• SD-69609, SD-75691 : JIRA Integration: Option to configure JIRA integration settings (Username and Password) from ServiceDesk Plus UI. Admin » Integrations » JIRA
  Note : All other configurations other than username and password are still in Jira.xml. Click here for more.
• SD-78731 : Insecure Direct Object Reference vulnerability (CVE-ID-2019-8394) in File Upload sections of the application.

Home :

• SD-74980 : The Scheduler displays Closed tasks as well.

Dashboard :

• SD-71787 : When a requester tries to view a shared executive dashboard, an authorization error is thrown.

Requests :

• SD-74402 : Task comment in a service template is not displayed in the request raised by using the template via requester login.
• SD-72397 : Business Impact field in Right Hand Side panel and Requester Details dialog are hidden for Standard Edition.
• SD-70781 : When emails with attachments (.eml files) are sent to ServiceDesk Plus, the attached files are processed and added to the request description, but not as file attachments.
• SD-72427 : Inline images in mails sent from Outlook 2016 are not parsed in ServiceDesk Plus.
• SD-75736 : Browser personalization is not considered for new request details page in non-English languages.

Admin :

• SD-74749 : Text wrap is not applied in FAFR.
• SD-75736 : Hints in the self-service portal are not translated for German language setups.

Reports :

• SD-75235 : A horizontal bar is displayed while selecting Requesters in the Advanced Filter section of the Reports page. This issue occurs only in IE.

Others :

• SD-58938 : Local authentication does not work when users associated with the domain log into the application through native mobile applications.
• SD-70207 : FAFR changes are not captured in the system log viewer.