Sucuri Just Announced a Critical 0-day Remote Command Execution Vulnerability in Joomla
Quote:
The Joomla security team have just released a new version of Joomla to patch a critical remote command execution vulnerability that affects all versions from 1.5 to 3.4.
This is a serious vulnerability that can be easily exploited and is already in the wild.
|
https://blog.sucuri.net/2015/12/remo...in-joomla.html
An Update has been released by Joomla for Joomla 3.x Versions
https://www.joomla.org/announcements...-released.html
and updates are expected for 1.5 and 2.5 versions soon.
https://docs.joomla.org/Security_hot...a_EOL_versions
If you are running Joomla Version 3.x you need to update as soon as possible and if you
are running 1.5 or 2.5 brances stay tuned for updates as soon as they are released.
As always FutureQuest encourages anyone running any scripts, such as
Joomla, to ensure they maintain the most up to date version and install
any patches released to reduce the chances of a compromise of your site.
This also includes any plugins, addons and themes...
It is always best to subscribe to any Security or Update mailing list provided
by the Authors of the script(s) you are running.
The FutureQuest Team
Linear Mode
