Joomla 3.9.3 is now available
The Joomla team has announced that version 3.9.3 is now available. This release addresses 6 security vulnerabilities and contains 30 bug fixes and improvements.
Changelog:
Security Issues Fixed
- Low Priority - Core - Lack of URL filtering in various core components (affecting versions 2.5.0 through 3.9.2)
- Low Priority - Core - Browserside mime-type sniffing causes XSS attack vectors (affecting versions 1.0.0 through 3.9.2)
- Low Priority - Core - Additional warning in the Global Configuration textfilter settings (affecting versions 2.5.0 through 3.9.2)
- Low Priority - Core - Stored XSS issue in the Global Configuration help URL #2 (affecting versions 2.5.0 through 3.9.2)
- Low Priority - Core - XSS Issue in core.js writeDynaList (affecting versions 2.5.0 through 3.9.2)
- Low Priority - Core - Implement the TYPO3 PHAR stream wrapper (affecting versions 2.5.0 through 3.9.2)
Bug fixes and Improvements
- Prevent renaming/deleting the template index.php file
- Smart Search improvement
- Contacts banned fields removed
- Improvement of the Integration tab display
- Fix the category filter for featured articles
- Fix for the Template Style field in the menu manager
- Breadcrumbs for tags
For more information about the security release, make sure to visit the official announcement page or GitHub for the full list of bug fixes.
