All Activity

Hi, MaxMind are indicating the region value submitted to them is invalid. Please examine what value is being sent to them by re-running the fraud check with the Module Debug Log enabled: https://docs.whmcs.com/9-0/troubleshooting/logs-in-whmcs/#module-log This log will allow you to see the full request sent to Maxmind.

We need to be able to disable the "immutable invoice" feature urgently. In Australia, this is not a requirement, how can we disable this feature? Adding $invoice_immutable = 'false'; in config is not working. Can you please assist urgently with this changed. The rest of the world does not belong to the EU, this is a game changer for us. Absolutely ridiculous that this cannot be disabled for non EU countries.

All the more reason to have had a beta, John.

We've just had our first monthly CRON run on 9.0.1 and it was an absolute disaster, clients are having hundreds of Invoices generated instead of the single Invoice they should be with all serviced contained matching the same due date. Has anyone run into this issue after upgrading, we've made zero other changes except for the standard upgrade :(

And here we are. It has been one month since the release of the new version, and it’s still full of issues. Support keeps saying the cases have been forwarded to development and that we simply have to wait. At this point, it’s becoming very frustrating. WHMCS seems to be declining in quality with every new release. Stability and reliability used to be strengths, but now it feels like we’re constantly dealing with unresolved bugs and delays. This situation is disappointing, especially for those of us running production environments and relying on the platform daily. I sincerely hope these issues are addressed properly and not just pushed indefinitely to development without clear timelines or accountability.

I’ve been working on a Spaceship.com module for WHMCS that handles the new API. If you're looking to switch over, you can find the code and setup info here: https://github.com/TanvirIsraq/whmcs-spaceship-registrar It should help you get away from ResellerClub without much hassle.

We also enabled $allow_adminarea_invoice_mutation = true; The existence of this configuration item suggests that the implementation is not ready for production. This released feature is not ready.

@WHMCS John Thanks. It looks like the Search still does not support displaying all TLD extensions? In the screenshot, only 3 TLDs are shown with keyword suggestions. I was hoping that the new Search will finally allow users to see all available TLDs for the keyword search. Could you please confirm this?

Thank you!

Thank you for your reply. I can't attach a screenshot because I don't have permission to edit the topic :) I'll leave it here, you can download and take a look.

Yes and no. More of an upgrade issue. Staff has confirmed and reproduced the issue, as well as my solution - #WHMCS-25193 When will it get patched? Who knows. This is just a heads up for those migrating from v8-9. Right now, if you're just setting up S3 in V9, no worries, you can't use an empty region (just use auto in most cases). They should have this patched up soon(ish)

Brilliant. Would you be nice to see some screenshots. Thanks!

yep having same issues here - suddenly realised our income summaries were all off massively and only odd transactions recorded but loads just missing also bit worried we are now no longer allowed to edit an invoice that hasn't been paid... even sage accounting allows this, and to be honest im not sure WHMCS is reliable enough to enforce the complete prevention of editing any invoice thats been sent out .. This is pushed into an accounts system usually and in that you do reporting and credit notes tax submissions etc, im not using WHMCS as an accounts system only invoicing and renewals.. so why lock it down like this

Thanks for sharing Tom. I guess it's a V9 related issue.

WHMCS Cloudflare Turnstile Manager A free and open-source WHMCS Addon Module that replaces Google reCAPTCHA with Cloudflare Turnstile, a privacy-friendly and user-centric alternative. Features seamless Integration: Works with standard WHMCS themes (Six, Twenty-One) and custom themes. Admin Dashboard: Fully custom configuration interface directly within WHMCS Addons. Page Control: Enable/Disable Turnstile specifically for: Login Page Registration Page Password Reset Contact Us Support Ticket Submission Shopping Cart / Checkout Theme Support: Choose between Auto, Light, or Dark widgets. Advanced Selectors: Define custom jQuery selectors to inject the widget into ANY form on any theme without editing template files. Smarty Tag Support: Use {display_turnstile} in your .tpl files for manual placement. Installation Download the repository. Upload the folder megabre_turnstile to your WHMCS installation at: /modules/addons/megabre_turnstile/ Log in to your WHMCS Admin Area. Go to System Settings > Addon Modules. Find Cloudflare Turnstile Manager and click Activate. Click Configure to grant access permissions to your admin role group. Configuration Go to Addons > Cloudflare Turnstile Manager. Enter your Cloudflare Site Key and Secret Key. Toggle the pages where you want the captcha to appear. (Optional) If using a custom theme that isn't auto-detected, enter the jQuery selector for the submit button (e.g., .btn-login or #submit-btn) in the "Advanced: Custom Selectors" section. Click Save Configuration. Important Note To avoid conflicts, please disable the default WHMCS Captcha: Go to System Settings > General Settings > Security. Set Captcha Form Protection > Captcha Type to "Always Off". Note: This module automatically attempts to hide legacy captcha elements via CSS, but disabling them in settings is recommended. Manual Usage (Developers) If you prefer to place the widget manually in your template files, you can use the Smarty tag: <form method="post" action="login.php"> ... <!-- Manual Placement --> {display_turnstile} <button type="submit">Login</button> </form> Modul page: Whmcs Cloudflare addon module Don't forget to star it on GitHub.

ModulesStack has comes up with an updated version of Pay Invoice Without Login Module for WHMCS! v2.0 Version 2.0 brings stronger security and better control over invoice sharing. You can now set expiration times for shared links, add optional PIN/password protection, generate QR codes, track link activity, and view detailed access logs with IP and time. Admins can also control or disable sharing for specific clients or groups. Upgrade to v2.0 for a more secure and flexible invoice payment experience for Your WHMCS Business.

Randomly ran into this one today when updating a dev site so I thought I'd open this up in here as well as a bug report In v8, the 'region' field is not required when s3 storage is used as it shouldn't be. Not all s3 providers require, or supply it.. I upgraded a v8 dev install from v8 to v9 today, went to do a template cleanup (inside WHMCS) and got this: InvalidArgumentException: Missing required client configuration options: region: (string) A "region" configuration value is required for the "s3" service (e.g., "us-west-2"). A list of available public regions and endpoints can be found at http://docs.aws.amazon.com/general/latest/gr/rande.html. in /home/user/public_html/vendor/aws/aws-sdk-php/src/ClientResolver.php:1280 Did some digging into ClientResolver.php, and it seems that this can no longer handle empty regions properly. In v8 this works fine, but the upgrades to v9 make this not so much My own digging and testing came up with the following solution which works: In ClientResolver.php, around line 1260, replace _apply_region with this code public static function _apply_region($value, array &$args) { if (empty($value)) { $value = 'auto'; // self::_missing_region($args); } $args['region'] = $value; } Keep in mind that this is going to be very specific, so get your provider's default region if you want and replace 'auto' with that. This works with CF storage though, very well.

WHMCS has always handled fraud orders poorly and inconsistently, and this is even worse now with the strange "immutable" invoice issues. For example, when an order contains a single DOMAIN REGISTRATION, and is marked as fraud, we can set the order back to pending by clicking the set as pending button for the order. This previously set the invoice as "unpaid" and the client could complete the order by paying the invoice. Now the invoice is set as "Payment Pending" and the user is not able to pay the invoice at all. The only way to resolve this is to add the disable immutable invoices hack to configuration.php and then manually set the invoice to "unpaid". Then the client can pay the invoice and the domain is registered. What's an even bigger mess is when an order contains a single DOMAIN TRANSFER, and is marked as fraud. If we set the order back to pending, for whatever reason, the invoice stays as "cancelled" - this was the case even before WHMCS 9 and is still the case now (this is likely a bug). Previously we would just set the invoice to unpaid, then manually pay it (or have the client pay it). However the issue then is that even after the invoice is paid in this case, the domain is never actually transferred - we have always had to handle this step manually. What's even worse now in WHMCS 9.0 with domain transfer orders initially marked as fraud, is when we set the order back to pending, the invoice is still "cancelled" and we can't do anything with it. If we enable the hack in configuration.php to allow us to edit the invoices again, we can set the invoice to "unpaid", but now for some reason it has a "credit note" in it so the total amount owing on the invoice is now $0 and there is no way to actually complete the order. What a complete mess. One truly wonders what they do with all the extra money from the extortionate price increases. TLDR: If you receive a domain transfer order that is initially marked as fraud, there is literally no way to complete the order.

Every WHMCS administrator knows the struggle: adding an announcement, writing a knowledgebase article, or placing an image on a product page often requires more effort than it should. Typically, you have to open an FTP client, navigate through folders, upload the file, and then manually copy the URL. This process is time-consuming and disrupts your workflow. To eliminate this overhead, we have developed a simple yet highly functional solution: Media Manager. Zero-Installation Architecture The greatest advantage of this tool is that it requires no module installation or complex configuration. Consisting of a single PHP file (media-manager.php), you simply upload it to your WHMCS admin directory, and it is ready to go. Native WHMCS Security Instead of building a separate security layer, we integrated the tool directly with the WHMCS admin authentication system. This means that no one can access this file without an active administrator session. It doesn't act as a standalone, vulnerable media manager; it functions as a secure part of your existing panel. What Can You Do? The tool provides all the essential features needed for daily management tasks: Maintain organization by creating and deleting folders. Perform fast file uploads and deletions. Rename files on the fly. Copy the direct URL of any uploaded file with a single click. For administrators who frequently add images to knowledgebase articles, the "Login to FTP, find directory, upload file, copy path" cycle is now a thing of the past. How to Get Started There is only one minor adjustment required before use: open the media-manager.php file and replace the "websiteniz.com" placeholder with your own domain name. Once this edit is made, your system is fully prepared. Our goal wasn't to build a massive, complex media library. Instead, we aimed to provide a fast, secure, and practical file management tool within the WHMCS environment. Born out of necessity and tested in the field, this tool is now available for everyone. Github project: Whmcs Media Manager Website: www.megabre.com

Hi Still waiting on the answer, also. I guess I need to open a ticket then

As product manager, I should think he has more pressing responsibilities than this community. Busy with that job, vacation, who knows?

What happened to John? Last online: February 6 ! Perhaps he quit WHMCS?

😇

Umm.. MySQL 8.0 reaches end of life in a couple of weeks - shouldn't there be some update here by now?

Yeah this is a nightmare