The essential news about content management systems and mobile technology. Powered by Perfect Publisher and XT Search for Algolia.
The News Site publishes posts to the following channels: Facebook, Instagram, Twitter, Telegram, Web Push, Tumblr, and Blogger.
Lack of input validation allows com_media root paths outside of the webroot.
Joomla! CMS versions 2.5.0 - 3.9.20
Upgrade to version 3.9.21
The JSST at the Joomla! Security Centre....
Lack of input validation in com_content leads to an open redirect.
Joomla! CMS versions 3.0.0 - 3.9.20
Upgrade to version 3.9.21
The JSST at the Joomla! Security Centre....
Lack of escaping in mod_latestactions allows XSS attacks.
Joomla! CMS versions 3.9.0 - 3.9.20
Upgrade to version 3.9.21
The JSST at the Joomla! Security Centre....
Inadequate filtering in the system information screen could expose redis or proxy credentials
Joomla! CMS versions 3.0.0 - 3.9.19
Upgrade to version 3.9.20
The JSST at the Joomla! Security Centre....
Lack of input filtering and escaping allows XSS attacks in mod_random_image
Joomla! CMS versions 3.0.0 - 3.9.19
Upgrade to version 3.9.20
The JSST at the Joomla! Security Centre....