Sign In

Welcome! Log into your account

Forgot your password?

Create an account

Sign Up

Welcome! Register for an account

A password will be e-mailed to you.

Password Recovery

Recover your password

A password will be e-mailed to you.

Joomla 3.9.28 / 3.10.0 Alpha 7 / Joomla 4.0.0 RC3

1 Star2 Stars3 Stars4 Stars5 Stars (6 votes, average: 4.00 out of 5)
Joomla 3.9.28 / 3.10.0 Alpha 7 / Joomla 4.0.0 RC3

Joomla is an award-winning content management system (CMS). It enables you to build Web sites and powerful online applications. Many aspects, including its ease-of-use and extensibility, have made Joomla the most popular Web site software available. Best of all, it is an open source solution that is freely available to everyone.

Since Joomla is based on PHP and MySQL, you’re building powerful applications on an open platform anyone can use, share, and support. A content management system is software that keeps track of every piece of content on your Web site.

Much like your local public library keeps track of books and stores them. Content can be simple text, photos, music, video, documents, or just about anything you can think of.

A major advantage of using a CMS is that it requires almost no technical skill or knowledge to manage. Since the CMS manages all your content, you don’t have to.

Hence, Joomla! is an international project, with users and contributors around the world. It is easy to install and set up even if you’re not an advanced user. Many Web hosting services offer a single-click install, getting your new site up and running in just a few minutes. As a Web designer or developer, you can quickly build sites for your clients. Then, with a minimal amount of instruction, you can empower your clients to easily manage their own sites themselves.

Joomla is used all over the world to power Web sites of all shapes and sizes:

  • Corporate Web sites or portals
  • Corporate intranets and extranets
  • Online magazines, newspapers, and publications
  • E-commerce and online reservations
  • Government applications
  • Small business Web sites
  • Non-profit and organizational Web sites
  • Community-based portals
  • School and church Web sites
  • Personal or family homepages

Many companies and organizations have requirements that go beyond what is available in the basic package. In those cases, Joomla’s powerful application framework makes it easy for developers to create sophisticated add-ons that extend the power of Joomla into virtually unlimited directions.

The core framework enables developers to quickly and easily build:

  • Inventory control systems
  • Data reporting tools
  • Application bridges
  • Custom product catalogs
  • Integrated e-commerce systems
  • Complex business directories
  • Reservation systems
  • Communication tools

What’s New in Joomla 3.9.28:

Security Issues Fixed

  • [20210701] Low Severity – Low Impact – XSS in JForm Rules field (affecting Joomla! 3.0.0 through 3.9.27)
  • [20210702] Low Severity – Low Impact – DoS through usergroup table manipulation (affecting Joomla! 2.5.0 through 3.9.27)
  • [20210703] Low Severity – Moderate Impact – Lack of enforced session termination (affecting Joomla! 2.5.0 through 3.9.27)
  • [20210704] Low Severity – High Impact – Privilege escalation through com_installer (affecting Joomla! 2.5.0 through 3.9.27)
  • [20210705] Low Severity – Moderate Impact – XSS in com_media imagelist (affecting Joomla! 3.0.0 through 3.9.27)

Bug fixes and Improvements

  • Update CA certificates #34693
  • Smart Search: Fix inserting tokens to DB #34497
  • Fix search suggestions for mixed-case searches #33942

What’s New in Joomla 3.9.27:

Security Issues Fixed

  • [20210501] Low Severity – Low Impact – Adding HTML to the executable block list of MediaHelper::canUpload (affecting Joomla! 3.0.0 through 3.9.26)
  • [20210502] Low Severity – Low Impact – CSRF in AJAX reordering endpoint (affecting Joomla! 3.0.0 through 3.9.26)
  • [20210503] Low Severity – Low Impact – CSRF in data download endpoints (affecting Joomla! 3.0.0 through 3.9.26)

Bug fixes and Improvements

  • Disable FLoC by default
  • Postgres compatibility fixes for smart search
  • Allow objects stored in tables as json
  • Improve indexing performance of Smart Search
  • Addional PHP 8 improvment

What’s New in Joomla 3.9.26:

Security Issues Fixed

  • [20210401] Low Severity – Low Impact – Escape xss in logo parameter error pages (affecting Joomla! 3.0.0 through 3.9.25)
  • [20210402] Low Severity – Low Impact – Inadequate filters on module layout settings (affecting Joomla! 3.0.0 through 3.9.25)

Bug fixes and Improvements

  • Fix caching issues after rebuilding update sites
  • Allow to configure load balancer/reverse proxy setting
  • Fix loosing extra query parameter for update sites
  • MySQL and MariaDB compatibility fixes
  • Fix frontend create article permission
  • Update CodeMirror to 5.60.0
  • Addional PHP 8 improvment

What’s New in Joomla 3.9.25:

Security Issues Fixed

  • Low Severity – Low Impact – Insecure randomness within 2FA secret generation (affecting Joomla! 3.2.0 through 3.9.24)
  • Low Severity – Low Impact – Potential Insecure FOFEncryptRandval (affecting Joomla! 3.2.0 through 3.9.24)
  • Low Severity – Moderate Impact – XSS within alert messages showed to users (affecting Joomla! 2.5.0 through 3.9.24)
  • Low Severity – Moderate Impact – XSS within the feed parser library (affecting Joomla! 2.5.0 through 3.9.24)
  • Low Severity – Low Impact – Input validation within the template manager (affecting Joomla! 3.2.0 through 3.9.24)
  • Low Severity – Moderate Impact – com_media allowed paths that are not intended for image uploads (affecting Joomla! 3.0.0 through 3.9.24)
  • Low Severity – Moderate Impact – ACL violation within com_content frontend editing (affecting Joomla! 3.0.0 through 3.9.24)
  • Low Severity – Moderate Impact – Path Traversal within joomla/archive zip class (affecting Joomla! 3.0.0 through 3.9.24)
  • Low Severity – Moderate Impact – Inadequate filtering of form contents could allow to overwrite the author field (affecting Joomla! 1.6.0 through 3.9.24)

Bug fixes and Improvements

  • Fix Save as Copy tag
  • Fix published attribute for Tag field
  • Fix batch menu items
  • Stream transport should enable verify_peer_name when possible
  • Optimize the code for rename incorrectly cased files on update
  • Addional PHP 8 improvments

What’s New in Joomla 3.9.24:

Security Issues Fixed

  • [20210101] Low Severity – Low Impact – com_modules exposes module names (affecting Joomla! 3.0.0 through 3.9.23)
  • [20210102] Low Severity – Moderate Impact – XSS in mod_breadcrumbs aria-label attribute (affecting Joomla! 3.9.0 through 3.9.23)
  • [20210103] Low Severity – Moderate Impact – XSS in com_tags image parameters (affecting Joomla! 3.1.0 through 3.9.23)

Bug fixes and Improvements

  • Continuing to improve PHP 8 support
  • Solved performance issue with zip archives containing zip files
  • Removes deprecate feature-policy and adds the new Permissions Policy
  • Update joomla/image dependency
  • Fixed regression SMTP Settings Test
  • Fixed regression to save empty passwords in global configuration

What’s New in Joomla 3.9.21:

Security Issues Fixed

  • Low Priority – Core – XSS in mod_latestactions (affecting Joomla! 3.9.0 through 3.9.20)
  • Low Priority – Core – Open redirect in com_content vote feature (affecting Joomla! 3.0.0 through 3.9.20)
  • Low Priority – Core – Directory traversal in com_media (affecting Joomla! 2.5.0 through 3.9.20)

Bug fixes and Improvements

  • TinyMCE updated
  • CodeMirror updated
  • Upload Package File / Joomla Update : Upload file size check added
  • Actions Log: Log an event when Joomla is update

Homepage – https://www.joomla.org

Leave a Reply

0 Comments on Joomla 3.9.28 / 3.10.0 Alpha 7 / Joomla 4.0.0 RC3