Sucuri just released this Security Alert regarding Joomla.
Quote:
|
The Joomla team just released a new Joomla version (3.4.5) to fix some serious security vulnerabilities. The most critical one is a remote and unauthenticated SQL injection on the com_contenthistory module (included by default) that allows for a full take over of the vulnerable site.
|
https://blog.sucuri.net/2015/10/joom...erability.html
From the Joomla Team
Quote:
|
Joomla! 3.4.5 is now available. This is a security release for the 3.x series of Joomla which addresses a critical security vulnerability. We strongly recommend that you update your sites immediately. This release only contains the security fixes; no other changes have been made compared to the Joomla 3.4.4 release.
|
https://www.joomla.org/announcements...-released.html
If your site is running Joomla version 3x you should take steps to update your version of Joomla immediately.
As always FutureQuest encourages anyone running any scripts, such as
Joomla, to ensure they maintain the most up to date version and install
any patches released to reduce the chances of a compromise of your site.
This also includes any plugins, addons and themes...
It is always best to subscribe to any Security or Update mailing list provided
by the Authors of the script(s) you are running.
The FutureQuest Team
Linear Mode
