Joomla 3.9.25 is now available.

More
1 year 6 months ago - 1 year 6 months ago #264 by Dom Cassone

Joomla 3.9.25 is now available.

This is a security release for the 3.x series of Joomla which addresses 9 security vulnerabilities and contains more than 40 bug fixes and improvements.What's in 3.9.25?Joomla 3.9.25 includes 9 security vulnerability fixes and addresses several bugs, including:Security Issues Fixed
  • [20210301] Low Severity - Low Impact - Insecure randomness within 2FA secret generation (affecting Joomla! 3.2.0 through 3.9.24)
  • [20210302] Low Severity - Low Impact - Potential Insecure FOFEncryptRandval (affecting Joomla! 3.2.0 through 3.9.24)
  • [20210303] Low Severity - Moderate Impact - XSS within alert messages showed to users (affecting Joomla! 2.5.0 through 3.9.24)
  • [20210304] Low Severity - Moderate Impact - XSS within the feed parser library (affecting Joomla! 2.5.0 through 3.9.24) 
  • [20210305] Low Severity - Low Impact - Input validation within the template manager (affecting Joomla! 3.2.0 through 3.9.24) 
  • [20210306] Low Severity - Moderate Impact - com_media allowed paths that are not intended for image uploads (affecting Joomla! 3.0.0 through 3.9.24) 
  • [20210307] Low Severity - Moderate Impact - ACL violation within com_content frontend editing (affecting Joomla! 3.0.0 through 3.9.24) 
  • [20210308] Low Severity - Moderate Impact - Path Traversal within joomla/archive zip class (affecting Joomla! 3.0.0 through 3.9.24) 
  • [20210309] Low Severity - Moderate Impact - Inadequate filtering of form contents could allow to overwrite the author field (affecting Joomla! 1.6.0 through 3.9.24) 
Bug fixes and Improvements
  • Fix Save as Copy tag
  • Fix published attribute for Tag field
  • Fix batch menu items 
  • Stream transport should enable verify_peer_name when possible
  • Optimize the code for rename incorrectly cased files on update
  • Addional PHP 8 improvments 
You all know how I feel....Keeping your sites up to date is one of the best ways to get the best security and performance!

To your success,
Dom
Last edit: 1 year 6 months ago by Dom Cassone.

Please Log in to join the conversation.

Time to create page: 0.238 seconds
Powered by Kunena Forum

Ready to get started?

Get your Joomla site integrated with Keap now.

JoomFuse

© Zacaw Enterprises Inc. All rights reserved.