The essential news about content management systems and mobile technology.
Powered by Joocial, XT Search for Algolia, and SlimApps.

Joomla! 3.4 - Do More

Joomla! 3.4.7 is now available. This is a security release for the 3.x series of Joomla which addresses a critical security vulnerability and one low level security vulnerabilities. We strongly recommend that you update your sites immediately.

This release only contains the security fixes; no other changes have been made compared to the Joomla 3.4.6 release.

Security Release

What's in 3.4.7

Version 3.4.7 is released to address two reported security vulnerabilities and includes security hardening of the MySQLi driver to help prevent object injection attacks.

The Joomla Security Strike team has been following up on the critical security vulnerability patched last week. Since the recent update it has become clear that the root cause is a bug in PHP itself. This was fixed by PHP in September of 2015 with the releases of PHP 5.4.45, 5.5.29, 5.6.13 (Note that this is fixed in all versions of PHP 7 and has been back-ported in some specific Linux LTS versions of PHP 5.3). The only Joomla sites affected by this bug are those which are hosted on vulnerable versions of PHP. We are aware that not all hosts keep their PHP installations up to date so we are making this release to deal with this issue on vulnerable PHP versions.

Security Issues Fixed

  • High Priority - Core - Session Hardening (affecting Joomla 1.5 through 3.4.6) More information »
  • Low Priority - Core - SQL Injection (affecting Joomla 3.0.0 through 3.4.6) More information »

Please see the documentation wiki for FAQ’s regarding the 3.4.7 release. It is important to note that due to some session changes you will not be able to edit items until you log out and log back in again. Please note that there has been a backwards compatibility break regarding how session management is handled. If you are using the documented Joomla API you will have no issues. The changes are fully documented in the release documentation....

Read more

Joomla! 3.4 - Do More

Joomla! 3.4.6 is now available. This is a security release for the 3.x series of Joomla which addresses a critical security vulnerability and 4 low level security vulnerabilities. We strongly recommend that you update your sites immediately.

This release only contains the security fixes; no other changes have been made compared to the Joomla 3.4.5 release.

Security Release

What's in 3.4.6

Version 3.4.6 is released to address four reported security vulnerabilities and includes security hardening of the user password reset system.

Security Issues Fixed

  • High Priority - Core - Remote Code Execution (affecting Joomla 1.5 through 3.4.5) More information »
  • Low Priority - Core - CRSF Hardening (affecting Joomla 3.2.0 through 3.4.5) More information »
  • Low Priority - Core - Directory Traversal (affecting Joomla 3.2.0 through 3.4.5) More information »
  • Low Priority - Core - Directory Traversal (affecting Joomla 3.4.0 through 3.4.5) More information »

Please see the documentation wiki for FAQ’s regarding the 3.4.6 release....

Read more

Joomla Beta Logo

The Joomla! Project is pleased to announce the availability of Joomla! CMS 3.5 Beta 1 . Community members are asked to download and install the package in order to provide quality assurance for the forthcoming 3.5 release.

Joomla! 3 is the latest major release of the Joomla! CMS, with 3.5 the sixth standard-term support release in this series. Please note that going from 3.4 to 3.5 is a one-click upgrade and is NOT a migration. The same is true is for any subsequent versions in the 3 series of the CMS. That being said, please do not upgrade any of your production sites to the beta version as beta is ONLY intended for testing and there is no upgrade path from Beta....

Read more

Hello from everyone on PLT! We have been busy over the past weeks testing, and re-testing Joomla 3.5 beta 1. Timelines are always the first thing people want to know; followed with what features will be available.

Timeline update for 3.5

Timelines are a tricky part of planning. Bug fixing can be a challenging task to plan for. Sometimes the answer comes instantly and sometimes we’ll lose days on a single issue. We’ve been working tirelessly on an issue for the last couple weeks. We are adjusting our timeline appropriately.  ...

Read more

Revista de la Comunidad Joomla! - Noviembre 2015

La edición de Noviembre 2015 de la Revista de la Comunidad Joomla! ya está aquí. Nuestros artículos para este mes:

Presentación del Editor

Joomla! atraviesa fronteras, por Guillermo Bravo

Este año la Joomla! World Conference se celebrará en la ciudad de Bangalore, en la India. Haber llevado la conferencia mundial a un lugar tan lejano como la India supone un tremendo esfuerzo por parte del equipo organizador, al que......

Read more