0.00 (0 votes)
Recently released Joomla 3.4.6 and 3.4.7 updates are the important security releases! Update your site without any template damage risk!

On 14th and 21st December 2015 were introduced two important security Joomla updates. What changes are included in the updates? First of all - improving site security.

At first Joomla 3.4.6 version has 4 serious vulnerabilities regarding safety of the users password reset system fixed.
Changes have a different priority depending on the degree of danger:

  • High Priority - Core - Remote Code Execution (affecting Joomla 1.5 through 3.4.5)
  • Low Priority - Core - CRSF Hardening (affecting Joomla 3.2.0 through 3.4.5)
  • Low Priority - Core - Directory Traversal (affecting Joomla 3.2.0 through 3.4.5)
  • Low Priority - Core - Directory Traversal (affecting Joomla 3.4.0 through 3.4.5)

Joomla 3.4.7 version has fixed the issue related with compatibility with older PHP versions. Applied changes:

  • High Priority - Core - Session Hardening (affecting Joomla 1.5 through 3.4.6)
  • Low Priority - Core - SQL Injection (affecting Joomla 3.0.0 through 3.4.6)

So if you have not updated you Joomla, do it now! If you are worry if the template will work correctly after update we just would like you ti inform that we have updated all our demo sites and may confirm that everything works fine, so we give you the green light :) 

Remember, that before making any changes first backup your site! Why? Just in any case! 

About the author

Magdalena Mrzygłocka
Magdalena Mrzygłocka is a junior coder at Joomla-Monster. Apart from writing a code she believes in knowledge sharing as a way of building Joomla community. That's why she is also an author of numerous articles and tutorials providing useful tips and tricks and explaining complexities of this cms usage. She also really enjoys helping Joomla user in direct contact. With her patience and commitment for spreading the knowledge, it makes her best support provider ever.

Users' reviews

Total rating: (0 votes) Log-in to add review

INDICO S.C.

ul. Wałowa 10/3, 84-200 Wejherowo, registered in Centralna Ewidencja i Informacja o Działalnosci Gospodarczej
NIP/VATID: PL5882424318

Copyright © 2009-2019 Joomla-Monster.com All rights reserved.

Joomla-Monster.com and this site is not affiliated with or endorsed by The Joomla! Project™. Any products and services provided through this site are not supported or warrantied by The Joomla! Project or Open Source Matters, Inc. Use of the Joomla!® name, symbol, logo and related trademarks is permitted under a limited license granted by Open Source Matters, Inc.