Joomla 3.9.23 is now available.

More
1 month 3 weeks ago - 1 month 3 weeks ago #262 by Dom Cassone (dcassone)
This is a security release for the 3.x series of Joomla which addresses 7 security vulnerabilities and contains more than 35 bug fixes and improvements.

What's in 3.9.23?
Joomla 3.9.23 includes 7 security vulnerability fixes and addresses several bugs, including:

Security Issues Fixed
  • [20201101] Low Priority - High Impact - Write ACL violation in multiple core views (affecting Joomla! 2.5.0 through 3.9.22)
  • [20201102] Low Priority - Moderate Impact - Disclosure of secrets in Global Configuration page (affecting Joomla! 2.5.0 through 3.9.22)
  • [20201103] Low Priority - Moderate Impact - Path traversal in mod_random_image (affecting Joomla! 2.5.0 through 3.9.22)
  • [20201104] Low Priority - High Impact - SQL injection in com_users list view (affecting Joomla! 3.0.0 through 3.9.22)
  • [20201105] Low Priority - Low Impact - User Enumeration in backend login (affecting Joomla! 3.9.0 through 3.9.22)
  • [20201106] Low Priority - Low Impact - CSRF in com_privacy emailexport feature (affecting Joomla! 3.9.0 through 3.9.22)
  • [20201107] Low Priority - High Impact - Write ACL violation in multiple core views (affecting Joomla! 1.7.0 through 3.9.22)
Bug fixes and Improvements
  • In order to get Joomla ready for PHP 8 (to be released on November 26th, 2020), Joomla 3.9.23 includes fixes to ensure PHP 8 compatibility.
  • Validation rule added for the redirect header field
  • Validation rule added for the redirect header field
  • TinyMCE updated
  • Validation rule added for the redirect header field [/li]
  • Fix for frontend module editing permissions
  • Validation rule added for the redirect header field [/li]
  • Fix for the lost of transparency when cropping/resizing images

Remember it is important to keep Joomla and all your extensions up to date to keep bugs and hackers at bay.

NOTE: If you host with us, we are updating your site. If you are looking for a new hosting company, give our secure managed hosting a try. Just reply to this email for more information.

To your success,
Dom
Last edit: 1 month 3 weeks ago by Dom Cassone (dcassone).

Please Log in to join the conversation.

Time to create page: 0.621 seconds

Connect with us

Twitter
JoomFuse Forum
Joomla Community Magazine
Facebook

© Copyright 2013-2021 Zacaw Enterprises Inc. All rights reserved.
JoomFuse is not affiliated with or endorsed by Joomla.org or Open Source Matters. Logos are copyright by the respective companies and used with permission.

Comodo Secure SSL
Infusionsoft Certified Consultant and Partner Infusionsoft Certified Developer