Joomla version 3.9.5 released
The Joomla team has officially announced the released of Joomla version 3.9.5. This is a security fix release that addresses 3 security vulnerabilities and has over 20 bug fixes and improvements to the system.
Security Issues
- Low Priority - Core - Directory Traversal in com_media (affecting Joomla 1.5.0 through 3.9.4)
- Moderate Priority - Core - Object.prototype pollution in JQuery $.extend (affecting Joomla 3.0.0 through 3.9.4)
- High Priority - Core - Helpsites refresh endpoint callable for unauthenticated users (affecting Joomla 3.2.0 through 3.9.4)
Bug fixes and Improvements
- User Password: Add minimum lowercase rule for password validation
- Associations tab: Fix wrong behaviour of Indonesian language
- Debug language: Fix User Actions Log Manager
- New installation language: Kazakh
- Google Authenticator plugin (2FA): QR-code generator implemented
For more information about the changes or to see the full list of bug changes, make sure to visit the official Joomla GitHub or visit the official announcement.
If you still have questions or concerns, feel free to contact us at any time.
