The essential news about content management systems and mobile technology. Powered by Perfect Publisher and XT Search for Algolia.
The News Site publishes posts to the following channels: Facebook, Instagram, Twitter, Telegram, Web Push, Tumblr, and Blogger.
Inadequate escaping allowed XSS attacks using the logo parameter of the default templates on error pages.
Joomla! CMS versions 3.0.0 - 3.9.25
Upgrade to version 3.9.26
The JSST at the Joomla! Security Centre....
Inadequate filtering of form contents could allow to overwrite the author field. The affected core components are com_fields, com_categories, com_banners, com_contact, com_newsfeeds and com_tags.
Joomla! CMS versions 1.6.0 - 3.9.24
Upgrade to version 3.9.25
The JSST at the Joomla! Security Centre....
Incorrect ACL checks could allow unauthorized change of the category for an article.
Joomla! CMS versions 3.0.0 - 3.9.24
Upgrade to version 3.9.25
The JSST at the Joomla! Security Centre....
com_media allowed paths that are not intended for image uploads.
Joomla! CMS versions 3.0.0 - 3.9.24
Upgrade to version 3.9.25
The JSST at the Joomla! Security Centre....
Missing input validation within the template manager.
Joomla! CMS versions 3.2.0 - 3.9.24
Upgrade to version 3.9.25
The JSST at the Joomla! Security Centre....