Joomla 5.1.3 and 4.4.7 Security and Bug Fix Release
The Joomla Project has announced the release of Joomla 5.1.3 and 4.4.7, focusing on critical security fixes and various bug resolutions. These updates are essential for maintaining a secure and efficient Joomla website.
Key Security Fixes:
- XSS Vulnerabilities: Multiple Cross-Site Scripting (XSS) vulnerabilities have been patched, ensuring that your website is protected from these common threats.
- ACL Improvements: Enhancements to Access Control List (ACL) mechanisms prevent unauthorized access to backend profiles.
- Cache Poisoning Prevention: Critical fixes were made to prevent cache poisoning in pagination, which could otherwise lead to compromised data.
- Improved URL Validation: Strengthened validation of internal URLs to avoid potential exploitation.
Bug Fixes and Improvements in Joomla 5.1.3:
- TinyMCE Update: The popular TinyMCE editor has been updated to version 6.8.4, offering improved performance and new features.
- Attachment Handling: Fixes in the Mail class improve the reliability of email attachments.
- Schema.org Data: Automatically deletes Schema.org data when an item is removed, ensuring clean and accurate metadata.
- Frontend Multilingual Compatibility: Enhancements ensure better support for multilingual sites without requiring compatibility plugins.
- Secure Session Cookies: Improved security settings for session cookies, ensuring they are flagged correctly for enhanced protection.
Joomla 4.4.7 Bug Fixes:
The 4.4.7 release focuses primarily on bug fixes, ensuring a smoother user experience and more stable website operations. The full list of changes is available on GitHub, providing detailed information for developers and site administrators.
Upgrade Path:
For those using Joomla 4.4.x, the transition to Joomla 5.x is straightforward, requiring only an upgrade rather than a full migration. This ensures that most extensions will continue to function correctly, with minimal disruption to your website.
It's important to note that while Joomla 4.4.x will be supported for the next two years, site administrators are encouraged to upgrade to Joomla 5.1.3 as soon as possible to benefit from the latest security enhancements and features.
How to Get Involved:
Joomla is powered by a dedicated community of volunteers. Whether you're a developer, designer, or simply a Joomla user, there are numerous ways to contribute to the project, including joining the Joomla Bug Squad or helping with documentation.