FOIAXpress Release Notes 11.13.1.0

Updated
  • Updated on Mar 9, 2026
  • Published on Jan 29, 2026
  • 2 minute(s) read
Prev Next

Product Enhancements  

1.1 Enhanced Chief FOIA Officer Report

ID# 1288571

Weā€™ve enhanced the Chief FOIA Officer report to yield better results. To generate the report, select Reports > Request Management Reports > Chief FOIA Officer > Generate.

1.2 Enhancing / Extending APIs

ID# 1229720

Extended APIs, GetRequestById and GetRequests, are now available to system integrator users, enabling deeper data access for external integrations and workflow automation. We have added the following attributes for both APIs:

  1. createdDate

  2. originalTargetDate

  3. subRequests

  4. requestDescription

  5. requestAgeWithHoldDays

  6. multiTrackType

  7. requestDescription

  8. exemptionCodes

  9. ProcessedDays  

  10. StaffProcessingCosts

Additionally, lastModifiedDate (or lastUpdatedDate) has been added only for GetRequestById.

Bug Fixes

Weā€™ve addressed the following bugs in this version of FOIAXpress:

ID

Description

1291307

Resolved an issue that caused the first note added to a payment to be overwritten by default text.

1277853

Fixed a bug restricting Proof of Identify (POI) and Consent attachment document updates in PAL.

1275373

Addressed an issue preventing the management of the Expedite Information header in PAL Configuration.

1292559

Resolved an error causing the EDR Report, Document History Report, Document Status Report, and Document Review Log to not load.

1292865

Addressed an issue restricting password reset using a second email address.

Security Updates

Weā€™ve made the following security updates in this version of FOIAXpress:

ID

Description

1278599

All binaries (DLLs, EXEs, and installer scripts) are now digitally signed using an updated code-signing certificate issued to Casepoint LLC.

This change ensures continued compliance with security best practices and may result in a different publisher name appearing in file properties or installation prompts.

There are no functional changes to the application as a result of this update.

  • Previous Publisher Name: AINS, LLC

  • New Publisher Name: Casepoint, LLC

  • Impacted Artifacts: Application DLLs, EXEs, installer script files

  • Reason for Change: Security best practices and alignment with Casepoint signing infrastructure

Note: If your IT policies or tools verify digital signatures or publisher names, you may need to update your allow lists or validation rules accordingly.

1294479

1298392

1298396

Introduced output encoding (e.g., HTML entity encoding), input validation, and Content Security Policy (CSP) headers.

1295860

1299788

1290220

Enforced MFA, applied rate-limiting, secured session tokens, and adopted robust password policies.

1298397

1298821

1288852

1290224

Sanitized all user inputs rendered into HTML, used templating engines with auto-escaping, and limited rendering of untrustworthy content.

1290223

This change addresses a known security issue by updating vulnerable JavaScript dependencies.

1278818

1278825

Implemented comprehensive safeguards to prevent SQL injection across the entire PAL module and the entire PAL Configuration and Collaboration module.

1290203

Implemented internal logic enhancements to fix security vulnerabilities in the Request page of PAL.

Related articles