Joomla! 1.0.14 released [Security Release] :::: Content Management System :::: Open Source Forumi na južnoslavenskim jezicima :::: Bosna i Hercegovina, Crna Gora, Hrvatska, Srbija, Makedonija, Slovenija,

Welcome, Guest. Please login or register.
Did you miss your activation email?

Search

19686 Posts in 2575 Topics- by 967 Members - Latest Member: VladaNish

Euro Free Code Forumi

Open Source Content Management Systems

Joomla Content Management System Forumi

Joomla ostalo

(Moderators: B@NE, tesic)Joomla! 1.0.14 released [Security Release]

« previous next »

Pages: [1] Go Down

Author

Topic: Joomla! 1.0.14 released [Security Release] (Read 1256 times)

fantastic

SITE ADMIN
Hero Member

Offline

Posts: 1270

Joomla! 1.0.14 released [Security Release]

« on: 11.02.2008; 03:11:32 AM »

Quote

Following on from the release of Joomla! 1.5.1 [Seenu], we are pleased to announce the immediate release of Joomla! 1.0.14 [Daybreak]. This version has been triggered by reported cross site scripting problems that could occur under the right circumstances. We have also addressed many other general bugs and problems as well.

This release addresses serious security vulnerabilities and you should proceed with testing on a backup copy of your site. Once you have verified that your site works as expected, we recommend upgrade your live site as soon as possible.

Quote

Security Fixes

* SECURITY [LOW] Fixed XSS issue in Search Component.
* SECURITY [LOW] Fixed XSS issue in Search results pages.
* SECURITY [LOW] Disallowed users from adding extra wildcard filters in search strings.
* SECURITY [LOW] Fixed multiple typos in back end Content Component making array integer check ineffective.
* SECURITY [LOW] Fixed case-sensitive flaw in Input Filter.
* SECURITY [HIGH] Fixed CSRF issue allowing portal compromise - Administrator components.

Opsirnije: http://www.joomla.org/content/view/4563/1/

Download: http://joomlacode.org/gf/project/joomla/frs/?action=index