Aug

2008

Joomla! 1.5.6 Released: a critical security fix

This morning the Joomla! dev team released a new Joomla version: 1.5.6.

That’s a released made to correct a security hole that was discovered yesterday: it seems that anyone could get administrator access using the Password Remind functionality, used to reset a password when it’s forgotten.

After a couple of hours the Joomla Team released an official patch on the Joomla.org website.

CompassDesigns.net was hacked because of this problem.

Every Joomla! 1.5 installation is infected by this problem, that now is of public domain. It’s a good idea to upgrade your websites!

Tags: Joomla, Joomla Security, Release Software

This entry was posted on Wednesday, August 13th, 2008 at 1:11 pm and is filed under Joomla. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Copes Flavio Says:
August 13th, 2008 at 3:08 pm

http://secunia.com/advisories/31457/

Jim Says:
August 15th, 2008 at 7:51 pm

Too late, I installed Wordpress. All is better now.

Copes Flavio Says:
August 16th, 2008 at 10:54 am

Hi Jim, thanks for your comment.

While I do think that WP is a great piece of software (I’m using it here on my blog) Joomla allows you to do many things that WP simply isn’t developed for.

So, if you want a blog then WP is the best choice in the world. There’s no fanatism here

JSST, security-related Joomla squad Says:
August 19th, 2008 at 9:45 am

[...] the security hole that lead to the release of Joomla! 1.5.6, the Joomla Core Team decided that it was time to create a group of people devoted to the security [...]

Joomla! 1.5.6 Released: a critical security fix

Related posts

4 Responses to “Joomla! 1.5.6 Released: a critical security fix”

Leave a Reply

feed RSS

Recent Posts

pages

tag cloud