Joomla 4.0.0 Stable - 17. Aug 2021 / 3.10 Stable - 17. Aug 2021 / !!! Bye !!!

[QSB]

Heute (02. Juni) wurde Joomla 3.9.19 released.

Es ist ein Security-Fix-Release:

• Low Priority - Core - XSS in modules heading tag option (affecting Joomla! 3.0.0 through 3.9.18)
• Low Priority - Core - Inconsistent default textfilter settings (affecting Joomla! 2.5.0 through 3.9.18)
• Low Priority - Core - XSS in com_modules tag options (affecting Joomla! 3.0.0 through 3.9.18)
• Moderate Priority - Core - XSS in jQuery.htmlPrefilter (affecting Joomla! 3.0.0 through 3.9.18)
• Low Priority - Core - CSRF in com_postinstall (affecting Joomla! 3.7.0 through 3.9.18)

Bug fixes and Improvements

• Fix incomplete utf8mb4 conversion since 3.9.17
• Backport jQuery 3.5 security fixes
• Frontend: Removal of the create/edit menu item buttons
• Extend the checks to make sure only real user admins can create accounts
• Mail: Support of dotless domains
• Codemirror updated to its latest release
• Improve translation system supporting better pluralization for languages like Welsh

 

[QSB]

Gestern (30. Juni) wurde Joomla 4.0 Beta 2 released.

• Install Joomla in the blink of an eye: An easier, faster and more user-friendly install process
• Brand new User Interfaces: (backend and frontend): intuitive and logical, easy to understand and use
• Joomla is people first: We aim to ensure that the templates are accessible (Level AA of WCAG 2.1)
• A fully rebuilt Media Manager: With a clear and logical User Interface and built-in image editing options.
• A new Workflow: Manage your content in an advanced and customisable way.
• Web Services: Make your content accessible to other websites and for easy mobile app creation.
• Cast-iron security features: Features like support for prepared SQL statements, so your website stays safe and secure.
• HTML Mail Templates: Customisation of the emails, sending emails from your site has never been so easy!
• Improved and expanded Command Line Interface (CLI): For smooth integration of your components
• A cleaner and more powerful codebase: The code has been cleaned up thoroughly, all Joomla 3.x deprecated functions have been removed, and we use PHP namespaces, enabling developers to deliver more robust and innovative applications than ever before
• The power of the Joomla Framework merged into the CMS.
• An enhanced event dispatching system
• And much more!

What is the difference between Beta 1 and Beta 2?

Joomla 4 Beta 2 contains over 200 bug fixes since beta 1. We'd like to draw users attention to the following issues:

• Fix to prevent the global timezone changing after use of JDate class (#29270)
• Add b/c break in the filter package to remove blacklist/whitelist terminology in line with a large amount left of the PHP ecosystem.

 

[QSB]

Am 14. Juli wurde Joomla 3.9.20 released!

Es ist ein Security-Fix-Release:

• Low Priority - Core - CSRF in com_installer ajax_install endpoint (affecting Joomla! 3.7.0 through 3.9.19)
• Moderate Priority - Core - Missing checks can lead to a broken usergroups table record (affecting Joomla! 2.5.0 through 3.9.19)
• Low Priority - Core - CSRF in com_privacy remove-request feature (affecting Joomla! 3.9.0 through 3.9.19)
• Low Priority - Core - Variable tampering via user table class (affecting Joomla! 3.0.0 through 3.9.19)
• Low Priority - Core - Escape mod_random_image link (affecting Joomla! 3.0.0 through 3.9.19)
• Low Priority - Core - System Information screen could expose redis or proxy credentials (affecting Joomla! 3.0.0 through 3.9.19)

Bug fixes and Improvements

• Upload & Update tab of Joomla Update Component: Fix to allow upload of ZIP filetype only
• Local database server: Allow optional port numbers
• Beez3 Template: Markup fix for the Tabs layout of com_contact
• Beez3 Template: Allow custom field editing on frontend
• Backend cache cleared when purging updates

 

[QSB]

Heute (28. Juli) wurde Joomla 4.0 Beta 3 und Joomla 3.10 Alpha 1 released!

What is the difference between Beta 2 and Beta 3?
Joomla 4 Beta 2 contains over 100 bug fixes since beta 2, including:

• Improvement to the Model Class to help with backwards compatibility to J3
• Moved the majority of icons to directly using Font Awesome (with some b/c layers)

In order to update from Joomla 4.x to any newer release please make sure you configure your Joomla Update Components Options to point to the Update Channel “Testing” and set the Minimum Stability to “Beta” this setting also now supports updates between pre-releases.


What’s new in this (3.10) release?

Along with Joomla 4 Beta 3, we are releasing the first alpha version of Joomla 3.10.

Joomla 3.10 is the bridge between the 2 major series. Joomla 3.10 stable will primarily be a release containing backports of API changes from the Joomla 4.0 development branch to help ease the transition to the next major release for the community. Joomla 3.10 will be supported for 2 years after it has been finally released.

With Joomla 3.10 we introduce a new feature to the Joomla Update component to help you with your mini-migration process: the Pre-Update Checker.

Once your website is updated to 3.10, the pre-update checker will allow you to check the compatibility with the Joomla 4.0 minimum requirements in terms of the current hosting environment and, more importantly, your installed extensions. This will help you migrate to Joomla 4.0 smoothly.


Can I update my website from 3.9.x to Joomla 4 Beta 3?

The simple answer here is yes. Not on a production site of course, but if you want to test the update to Joomla 4, now you can.

In order to upgrade from 3.9.x to Joomla 4, you have to go via the just-released 3.10 alpha at this point. There is no direct upgrade path between 3.9 and 4.x planned nor supported. All upgrades go via 3.10.

For the upgrade please follow these steps:

Go to the Joomla Update Component Options and switch the Update Channel to “Testing” and the Minimum Stability option to “Alpha”.
Update to 3.10 alpha1 using the Joomla Update Component.
After you have updated to 3.10 alpha please switch the Update Channel to “Custom URL” and set the Custom URL to “https://update.joomla.org/core/test/310to4_list.xml”
Now you get the update to the latest 4.0 beta release.
Please carefully check the results you get from the pre-update checker in terms of your environment and specify your installed extensions before upgrading.
After the upgrade please switch back to the “Testing” Update Channel with the “Beta” minimum stability to get future updates between Joomla 4 betas.

 

[QSB]

Heute (25. August) wurde Joomla 3.9.21 released.

Es ist ein Security-Release.

Security Issues Fixed

• Low Priority - Core - XSS in mod_latestactions (affecting Joomla! 3.9.0 through 3.9.20)
• Low Priority - Core - Open redirect in com_content vote feature (affecting Joomla! 3.0.0 through 3.9.20)
• Low Priority - Core - Directory traversal in com_media (affecting Joomla! 2.5.0 through 3.9.20)

Bug fixes and Improvements

• TinyMCE updated
• CodeMirror updated
• Upload Package File / Joomla Update : Upload file size check added
• Actions Log: Log an event when Joomla is updated

 

[QSB]

Wie heute (26. August) bekannt wurde:

Das Team rund um Joomla arbeitet daran die 4.0 zu stabilisieren. D.h. es werden in der finalen 4.0 also keine weiteren Features implementiert. Der Fokus liegt darauf die letzten Bugs zu beseitigen.

Des Weiteren:
Joomla 4.1 soll 6 Monate nach Veröffentlichung von 4.0 erscheinen.
Joomla 4.2 soll 12 Monate nach Veröffentlich von 4.0 und somit 6 Monate nach Veröffentlichung von 4.1 erscheinen.

 

[QSB]

Gestern (15. September) wurde Joomla 4 Beta 4 und Joomla 3.10 Alpha 2 released.

Unterschiede Beta 3 und Beta 4
Joomla 4 Beta 4 contains:

• Various bug fixes around the functionality of the CSP Plugin
• Improved our icomoon to fontawesome mapping (shoutout to Hans Kuijpers and Troy Hall for their continued teamwork on this)
• Added some code to handle nested templates as a preparatory step for future Joomla 4.x releases
• Added back the custom_data field to the extensions table (as a direct result of developer feedback)
• Increased test coverage of the API
• Over 100 bugs squashed!

Along with Joomla 4 Beta 4, we are releasing the second alpha version of Joomla 3.10.

Joomla 3.10 is the bridge between the 2 major series. Joomla 3.10 stable will primarily be a release containing backports of API changes from the Joomla 4.0 development branch to help ease the transition to the next major release for the community. Joomla 3.10 will be supported for 2 years after it has been finally released.

With Joomla 3.10 we introduce a new feature to the Joomla Update component to help you with your mini-migration process: the Pre-Update Checker.

Once your website is updated to 3.10, the pre-update checker will allow you to check the compatibility with the Joomla 4.0 minimum requirements in terms of the current hosting environment and, more importantly, your installed extensions. This will help you migrate to Joomla 4.0 smoothly.

 

[QSB]

Gestern (06. Oktober) wurde Joomla 3.9.22 released.

Bug fixes and Improvements

• Contact component: Fix for the category filter results
• Page Break: Fix for the page break title when the title attribute is after the class
• Privacy Request: Fix the token check when removing data via a privacy removal request
• Multilanguage: Display an error when the URL language code is saved as empty
• Multilanguage: Force lowercase for url language code

 

[QSB]

Gestern (27. Oktober) wurde Joomla 4 Beta 5 und Joomla 3.10 Alpha 3 released.

What is the difference between Beta 4 and Beta 5?
Joomla 4 Beta 5 contains:

• Renames “Control Panel” to “Home Dashboard”
• Fixes an error in Joomla 3 style plugins when their event contained an argument called $event
• Various doc-block updates
• Over 200 bugs squashed thanks to our PBF Contributors!

Can I update my website from 3.9.x to Joomla 4 Beta 5?
The simple answer here is yes. Not on a production site of course, but if you want to test the update to Joomla 4, now you can.

Edit:
Thema wird angepasst sobald folgendes behoben ist/wurde:

Internal Server Error
The server encountered an internal error or misconfiguration and was unable to complete your request.

Please contact the server administrator at [no address given] to inform them of the time this error occurred, and the actions you performed just before this error.

More information about this error may be available in the server error log.

 

[QSB]

Heute (24. November) wurde Joomla 3.9.23 released!

Es ist ein Security-Fix-Release:

• Low Priority - High Impact - Write ACL violation in multiple core views (affecting Joomla! 2.5.0 through 3.9.22)
  
• Low Priority - Moderate Impact - Disclosure of secrets in Global Configuration page (affecting Joomla! 2.5.0 through 3.9.22)
  
• Low Priority - Moderate Impact - Path traversal in mod_random_image (affecting Joomla! 2.5.0 through 3.9.22)
  
• Low Priority - High Impact - SQL injection in com_users list view (affecting Joomla! 3.0.0 through 3.9.22)
  
• Low Priority - Low Impact - User Enumeration in backend login (affecting Joomla! 3.9.0 through 3.9.22)
  
• Low Priority - Low Impact - CSRF in com_privacy emailexport feature (affecting Joomla! 3.9.0 through 3.9.22)
  
• Low Priority - High Impact - Write ACL violation in multiple core views (affecting Joomla! 1.7.0 through 3.9.22)

Bug fixes and Improvements
In order to get Joomla ready for PHP 8 (to be released on November 26th, 2020), Joomla 3.9.23 includes fixes to ensure PHP 8 compatibility

• TinyMCE updated
• Fix for frontend module editing permissions
• Fix for the lost of transparency when cropping/resizing images
• Validation rule added for the redirect header field

 

[QSB]

Gestern (07. Januar 2021) erschien Joomla 4 Beta 6 und 3.10 Alpha 4.

What is the difference between Beta 5 and Beta 6?

Joomla 4 Beta 6 contains:

• One backwards compatibility break to note - to implement tags you now need to have your Table classes implement the \Joomla\CMS\Tag\TaggableTableInterface. This was to fix issues between the refactored tags plugins and batch actions. This is similar to the interface we had already created for Versions. An empty interface and trait have been ported back into Joomla 3.10 in order to help migrations
• Major improvements to the Cassiopeia frontend template
• Updates from the 3.x branch to be inline with 3.9.24 Release Candidate 2
• All mails sent by Joomla now use the mail templates feature
• Fixes to session data when upgrading from Joomla 3.10 to Joomla 4 (you won’t have to log in again on update now!)

Zur 3.10 Alpha 4 gibts keine weiteren Infos.
Siehe dazu
https://www.psd-tutorials.de/forum/...lpha-3-27-okt-2020.169649/page-5#post-2728432
bzw:

What’s new in this (3.10) release?

Along with Joomla 4 Beta 6, we are releasing the fourth alpha version of Joomla 3.10

Joomla 3.10 is the bridge between the 2 major series. Joomla 3.10 stable will primarily be a release containing backports of API changes from the Joomla 4.0 development branch to help ease the transition to the next major release for the community. Joomla 3.10 will be supported for 2 years after it has been finally released.

With Joomla 3.10 we introduce a new feature to the Joomla Update component to help you with your mini-migration process: the Pre-Update Checker.

Once your website is updated to 3.10, the pre-update checker will allow you to check the compatibility with the Joomla 4.0 minimum requirements in terms of the current hosting environment and, more importantly, your installed extensions. This will help you migrate to Joomla 4.0 smoothly.

 

[QSB]

Heute (12. Januar) wurde Joomla 3.9.24 released.

Es ist ein Security-Fix-Release:

• Low Severity - Low Impact - com_modules exposes module names (affecting Joomla! 3.0.0 through 3.9.23)
  
• Low Severity - Moderate Impact - XSS in mod_breadcrumbs aria-label attribute (affecting Joomla! 3.9.0 through 3.9.23)
  
• Low Severity - Moderate Impact - XSS in com_tags image parameters (affecting Joomla! 3.1.0 through 3.9.23)

Bug fixes and Improvements

• Continuing to improve PHP 8 support
• Solved performance issue with zip archives containing zip files
• Removes deprecate feature-policy and adds the new Permissions Policy
• Update joomla/image dependency
• Fixed regression SMTP Settings Test
• Fixed regression to save empty passwords in global configuration

 

[QSB]

Gestern (02. Februar) wurde Joomla 4 Beta 7 und Joomla 3.10 Alpha 5 released.

What is the difference between Beta 6 and Beta 7?

Joomla 4 Beta 7 contains:

• An upgrade from Bootstrap 4 to Bootstrap 5 in response to the community initiated discussions on GitHub.

Zur 3.10 Alpha 5 gibts keine weiteren Infos.

What’s new in this (3.10) release?

Along with Joomla 4 Beta 7, we are releasing the fifth alpha version of Joomla 3.10.

Joomla 3.10 is the bridge between the 2 major series. Joomla 3.10 stable will primarily be a release containing backports of API changes from the Joomla 4.0 development branch to help ease the transition to the next major release for the community. Joomla 3.10 will be supported for 2 years after it has been finally released.

With Joomla 3.10 we introduce a new feature to the Joomla Update component to help you with your mini-migration process: the Pre-Update Checker.

Once your website is updated to 3.10, the pre-update checker will allow you to check the compatibility with the Joomla 4.0 minimum requirements in terms of the current hosting environment and, more importantly, your installed extensions. This will help you migrate to Joomla 4.0 smoothly.

Can I update my website from 3.9.x to Joomla 4 Beta 7?

The simple answer here is yes. Not on a production site of course, but if you want to test the update to Joomla 4, now you can.

Upgrade notice: Due to merging both a preparatory step for an upcoming Joomla 4.1 feature and adding back the custom_data property - there will be issues upgrading from beta 3 to beta 4 (or later). You’ll need to run a small amount of SQL before you make the upgrade - this is on the following documentation page: https://docs.joomla.org/J4.x:Upgrade_to_4.0_Beta_4

In order to upgrade from 3.9.x to Joomla 4, you have to go via the latest 3.10 alpha at this point. There is no direct upgrade path between 3.9 and 4.x planned nor supported. All upgrades go via 3.10.

For the upgrade please follow these steps:

Go to the Joomla Update Component Options and switch the Update Channel to “Testing” and the Minimum Stability option to “Alpha”.
Update to the latest 3.10 alpha using the Joomla Update Component.
Now please switch the Update Channel to “Custom URL” and set the Custom URL to “https://update.joomla.org/core/test/310to4_list.xml”
Now you get the update to the latest 4.0 beta release.
Please carefully check the results you get from the pre-update checker in terms of your environment and specify your installed extensions before upgrading.
After the upgrade please switch back to the “Testing” Update Channel with the “Beta” minimum stability to get future updates between Joomla 4 betas.

 

[QSB]

Gestern (02. März) wurde Joomla 3.9.25 released.

Es ist ein Security-Fix-Release:

• [20210301] Low Severity - Low Impact - Insecure randomness within 2FA secret generation (affecting Joomla! 3.2.0 through 3.9.24)
• [20210302] Low Severity - Low Impact - Potential Insecure FOFEncryptRandval (affecting Joomla! 3.2.0 through 3.9.24)
• [20210303] Low Severity - Moderate Impact - XSS within alert messages showed to users (affecting Joomla! 2.5.0 through 3.9.24)
• [20210304] Low Severity - Moderate Impact - XSS within the feed parser library (affecting Joomla! 2.5.0 through 3.9.24)
• [20210305] Low Severity - Low Impact - Input validation within the template manager (affecting Joomla! 3.2.0 through 3.9.24)
• [20210306] Low Severity - Moderate Impact - com_media allowed paths that are not intended for image uploads (affecting Joomla! 3.0.0 through 3.9.24)
• [20210307] Low Severity - Moderate Impact - ACL violation within com_content frontend editing (affecting Joomla! 3.0.0 through 3.9.24)
• [20210308] Low Severity - Moderate Impact - Path Traversal within joomla/archive zip class (affecting Joomla! 3.0.0 through 3.9.24)
• [20210309] Low Severity - Moderate Impact - Inadequate filtering of form contents could allow to overwrite the author field (affecting Joomla! 1.6.0 through 3.9.24)

Bug fixes and Improvements

• Fix Save as Copy tag
• Fix published attribute for Tag field
• Fix batch menu items
• Stream transport should enable verify_peer_name when possible
• Optimize the code for rename incorrectly cased files on update
• Addional PHP 8 improvments

 

[QSB]

Gestern (13. April) wurde Joomla 3.9.26 released.

Es ist ein Security-Fix-Release:

• [20210401] Low Severity - Low Impact - Escape xss in logo parameter error pages (affecting Joomla! 3.0.0 through 3.9.25)
• [20210402] Low Severity - Low Impact - Inadequate filters on module layout settings (affecting Joomla! 3.0.0 through 3.9.25)

Bug fixes and Improvements

• Fix caching issues after rebuilding update sites
• Allow to configure load balancer/reverse proxy setting
• Fix loosing extra query parameter for update sites
• MySQL and MariaDB compatibility fixes
• Fix frontend create article permission
• Update CodeMirror to 5.60.0
• Addional PHP 8 improvment

 

[QSB]

Heute (25. Mai) wurde Joomla 3.9.27 released.

Es ist ein Security-Release:

• [20210501] Low Severity - Low Impact - Adding HTML to the executable block list of MediaHelper::canUpload (affecting Joomla! 3.0.0 through 3.9.26)
• [20210502] Low Severity - Low Impact - CSRF in AJAX reordering endpoint (affecting Joomla! 3.0.0 through 3.9.26)
• [20210503] Low Severity - Low Impact - CSRF in data download endpoints (affecting Joomla! 3.0.0 through 3.9.26)

Bug fixes and Improvements

• Disable FLoC by default
• Postgres compatibility fixes for smart search
• Allow objects stored in tables as json
• Improve indexing performance of Smart Search
• Addional PHP 8 improvment

 

[QSB]

Am 01. Juni wurde Joomla 4 RC 1 und Joomla 3.10 Alpha 6 released.

Joomla! 4 is the latest major release of Joomla! CMS. Please note that going from 3.9 to 4.0 is a migration. You would need to upgrade your J3.9 to J3.10, which will be available the day J4.0 is stable. J3.10 has a compatibility checker to help guide you through the migration to J4.0. Please do not upgrade any of your production sites to the release candidate version!

What is this release for?
Joomla 4.0 RC1 is aimed at extension and template developers. To encourage them to work with this release in order to prepare extensions for the stable release of Joomla! CMS 4.0. Users are encouraged to test the package for issues and to report issues in the Joomla! CMS Issue Tracker. Test sites based on this release candidate can be taken through to stable but never use this version on a production site. There will be an upgrade path between release candidates and the final release candidate to the stable of Joomla 4.0 should you wish to try a new site build.

How will Joomla 4 benefit me?
Joomla4Speed
With Joomla 4 you benefit from the increased performance. Speed is one of the top factors in conversions whether your site is ecommerce or you need to grow your subscriptions. Joomla 4 gives your site the boost it needs.

Joomla4Accessibility
Whatever size your site is, accessibility is a must, and from the start Joomla 4 delivers best in class accessibility. The layout, contrast and infrastructure all have accessibility built in so all your visitors will benefit. We have aimed for W3C Accessibility Guidelines (WCAG) 2.0 (with AA compliance)

Joomla4Security
Running a site with state of the art well written code helps you stay ahead when it comes to security. With many architecture changes designed to maximize security and keep hackers out, you can be assured that moving to Joomla 4 is a wise choice. The benefits are countless when it comes to ensuring you and your clients data are as well protected as they can be.

Joomla4Workflows
Workflows help you to run your site efficiently, making sure that the jobs that need to get done are done and by the right people. Combined with the many improvements in the media manager, content writers will love the new workflow and media manager.

Joomla4Emails
Deliver customised emails that welcome and inform your website's audience effectively! With the new email template system it's easier than ever to make the emails your site sends be on message and on brand. Now you can take your site to the next level when communicating with your customers.

Joomla4Search
Search is a boost to any site. It allows your visitors to hone in on the areas they are interested in, increasing engagement and improving your sites ranking. So when it comes to search look no further, Joomla 4 smart search has many improvements over previous Joomla search and is the best to date.

Joomla 3.10 is the bridge between the 2 major series. Joomla 3.10 stable will primarily be a release containing backports of API changes from the Joomla 4.0 development branch to help ease the transition to the next major release for the community. Joomla 3.10 will be supported for 2 years after it has been finally released.

Once your website is updated to 3.10, the pre-update checker will allow you to check the compatibility with the Joomla 4.0 minimum requirements in terms of the current hosting environment and, more importantly, your installed extensions. This will help you migrate to Joomla 4.0 smoothly.

Can I update my website from 3.9.x to Joomla 4 RC1?
The simple answer here is yes. Not on a production site of course, but if you want to test the update to Joomla 4, now you can.

In order to upgrade from 3.9.x to Joomla 4, you have to go via the latest 3.10 release. There is no direct upgrade path between 3.9 and 4.x planned nor supported. All upgrades go via 3.10.

For the upgrade please follow these steps:

1. Go to the Joomla Update Component Options and switch the Update Channel to “Testing” and the Minimum Stability option to “Alpha”.
2. Update to the latest 3.10 alpha using the Joomla Update Component.
3. Switch the Update Channel to “Custom URL” and set the Custom URL to “https://update.joomla.org/core/test/310to4_list.xml”
4. Now you get, update to the latest 4.0 Release Candidate.
5. Please carefully check the results from the pre-update checker in terms of your environment and your installed extensions before upgrading.
6. After the upgrade please switch back to the “Testing” Update Channel with the “Release Candidate” minimum stability to get future updates between Joomla 4 RCs.
   
   If you need more details on the upgrade process you can find them in the documentation.

 

[QSB]

Gestern (15. Juni) wurde Joomla 4.0.0 RC2 und Joomla 3.10 Alpha 7 released.

Alles andere entnehmt ihr bitte dem Posting zuvor (vom 04-06.).

What is this release for?
Joomla 4.0 RC2 is aimed at extension and template developers. To encourage them to work with this release in order to prepare extensions for the stable release of Joomla! CMS 4.0. Users are encouraged to test the package for issues and to report issues in the Joomla! CMS Issue Tracker. Test sites based on this release candidate can be taken through to stable but never use this version on a production site. There will be an upgrade path between release candidates and the final release candidate to the stable of Joomla 4.0 should you wish to try a new site build.

Das wurde in Joomla 4 RC2 gegenüber RC1 verbessert

• Fehler behoben im Idap-Plugin
• Content history API endpoints – URLs geändert
• Änderungen in den PATCH endpoints der API Controller class
• Alle Fehlerbebungen aus Joomla 3.9.28 sind auch Teil dieses Releases
• Sicherheits-Verbesserungen in zahlreichen Javascript-Dateien (Dank an Dimitris)
• Mehr als 100 Bug fixes

 

[QSB]

Gestern (29. Juni) wurde Joomla 4.0.0 RC 3 und Joomla 3.10 Alpha 8 released.

Das wurde in Joomla 4 RC3 gegenüber RC2 verbessert

• Fix SEF-Routing für mehrsprachige Homepages, um mit Joomla 3 konsistent zu sein
• Bootstrap-Aktualisierung auf 5.0.2
• Mehr als 30 weitere Korrekturen

Alles andere entnehmt ihr bitte dem Posting zuvor (vom 04-06.).

 

[QSB]

Heute (06. Juli) wurde Joomla 3.9.28 released.

Es ist ein Security-Release:

• [20210701] Low Severity - Low Impact - XSS in JForm Rules field (affecting Joomla! 3.0.0 through 3.9.27)
• [20210702] Low Severity - Low Impact - DoS through usergroup table manipulation (affecting Joomla! 2.5.0 through 3.9.27)
• [20210703] Low Severity - Moderate Impact - Lack of enforced session termination (affecting Joomla! 2.5.0 through 3.9.27)
• [20210704] Low Severity - High Impact - Privilege escalation through com_installer (affecting Joomla! 2.5.0 through 3.9.27)
• [20210705] Low Severity - Moderate Impact - XSS in com_media imagelist (affecting Joomla! 3.0.0 through 3.9.27)

Bug fixes and Improvements

• Update CA certificates
• Smart Search: Fix inserting tokens to DB
• Fix search suggestions for mixed-case searches