Joomla 3.9.23 is now available.

More
1 year 10 months ago - 1 year 10 months ago #262 by Dom Cassone
This is a security release for the 3.x series of Joomla which addresses 7 security vulnerabilities and contains more than 35 bug fixes and improvements.

What's in 3.9.23?
Joomla 3.9.23 includes 7 security vulnerability fixes and addresses several bugs, including:

Security Issues Fixed
  • [20201101] Low Priority - High Impact - Write ACL violation in multiple core views (affecting Joomla! 2.5.0 through 3.9.22)
  • [20201102] Low Priority - Moderate Impact - Disclosure of secrets in Global Configuration page (affecting Joomla! 2.5.0 through 3.9.22)
  • [20201103] Low Priority - Moderate Impact - Path traversal in mod_random_image (affecting Joomla! 2.5.0 through 3.9.22)
  • [20201104] Low Priority - High Impact - SQL injection in com_users list view (affecting Joomla! 3.0.0 through 3.9.22)
  • [20201105] Low Priority - Low Impact - User Enumeration in backend login (affecting Joomla! 3.9.0 through 3.9.22)
  • [20201106] Low Priority - Low Impact - CSRF in com_privacy emailexport feature (affecting Joomla! 3.9.0 through 3.9.22)
  • [20201107] Low Priority - High Impact - Write ACL violation in multiple core views (affecting Joomla! 1.7.0 through 3.9.22)
Bug fixes and Improvements
  • In order to get Joomla ready for PHP 8 (to be released on November 26th, 2020), Joomla 3.9.23 includes fixes to ensure PHP 8 compatibility.
  • Validation rule added for the redirect header field
  • Validation rule added for the redirect header field
  • TinyMCE updated
  • Validation rule added for the redirect header field [/li]
  • Fix for frontend module editing permissions
  • Validation rule added for the redirect header field [/li]
  • Fix for the lost of transparency when cropping/resizing images

Remember it is important to keep Joomla and all your extensions up to date to keep bugs and hackers at bay.

NOTE: If you host with us, we are updating your site. If you are looking for a new hosting company, give our secure managed hosting a try. Just reply to this email for more information.

To your success,
Dom
Last edit: 1 year 10 months ago by Dom Cassone.

Please Log in to join the conversation.

Time to create page: 0.164 seconds
Powered by Kunena Forum

Ready to get started?

Get your Joomla site integrated with Keap now.

JoomFuse

© Zacaw Enterprises Inc. All rights reserved.