Joomla!® 3.6.5 SECURITY FIX - Update NOW

joomla support cheshire manchester merseyside north west uk

We were not given any prior notice about this Joomla! 3.6.5 SECURITY FIX which is a shame because many will miss it in the pre-Xmas rush.

UPDATE YOUR WEBSITE BEFORE you go Xmas shopping!

The fix is absolutely essential for webites using Joomla! 3 and some earlier versions.

 

Issues adressed

HIGH Priority: Core - Elevated Privileges

Affects Joomla! 1.6.0 through to Joomla! 3.6.4.

"Incorrect use of unfiltered data stored to the session on a form validation failure allows for existing user accounts to be modified; to include resetting their username, password, and user group assignments."

LOW Priority: Core - Shell Upload

Affects Joomla! 3.0.0 through to Joomla! 3.6.4.

"Inadequate filesystem checks allowed files with alternative PHP file extensions to be uploaded."

LOW Priority: Core - Information Disclosure

Affects Joomla! 3.0.0 through to Joomla! 3.6.4.

"Inadequate ACL checks in the Beez3 com_content article layout override enables a user to view restricted content."

Misc. Security Hardening

Joomla! 3.6.5 includes additional security hardening mechanisms prepared to restrict a user's ability to make potentially damaging configuration changes.

Read more: The Joomla! 3.6.5 Security Release.

 

Be prepared

... and protect your website.

Read more: How to update Joomla!

Read more: How to perform a FULL backup *

* Subscribers to WYNCHCO Joomla! CMS Support please register / sign in to read this article.

WYNCHCO Joomla! CMS Support

We coach, help and support managers with responsibility for Joomla! websites in organisations across Cheshire, Manchester, Merseyside, North West England & the UK.

Read more: WYNCHCO Joomla! CMS Support Packages.