The Joomlashack Blog
Joomla 1.5.9 Released- Important Security Update
- Written by Tom Elliott Tom Elliott
- Published: 14 January 2009 14 January 2009
It's been two months since a new version of Joomla 1.5 hit the streets, and not a moment too late. The new release has the longest change log we've seen in a long time, including some high priority security issues and dozens of bug fixes and changes.
The Joomla proclaims Joomla 1.5.9 is "a security release and users are strongly encouraged to upgrade immediately." So get to it!
Joomla 1.5.7 Released- 1 critical, 1 major vulernability fixed
- Written by Tom Elliott Tom Elliott
- Published: 30 September 2008 30 September 2008
Are you keeping up with Joomla 1.5 updates?
The Joomla Project is moving along and fixing security and other problems monthly now, and it's important to keep on top of these regular updates.
Need a template for your Joomla 1.5 site?
From their news release, see what's changed in this most recent version:
Read more: Joomla 1.5.7 Released- 1 critical, 1 major vulernability fixed
Urgent Joomla 1.5 security vulnerability discovered
- Written by Tom Elliott Tom Elliott
- Published: 13 August 2008 13 August 2008
From the Joomla.org website:
The Joomla! community is pleased to announce the immediate availability of Joomla! 1.5.6 [Vusani]. This is a quick turnaround security release to address a high level security issue and it is recommended all users upgrade immediately.
A flaw in the reset token validation mechanism allows for non-validating tokens to be forged. This will allow an unauthenticated, unauthorized user to reset the password of the first enabled user (lowest id). Typically, this is an administrator user. Note, that changing the first users username may lessen the impact of this exploit (since the person who changed the password does not know the login associated with the new password). However, the only way to completely rectify the issue is to upgrade to 1.5.6 (or patch the /components/com_user/models/reset.php file).
For more information about this exploit, click here to visit the Joomla Security Blog.
Joomla 1.5.5 Released: Duplicate Title Bug Squashed
- Written by Tom Elliott Tom Elliott
- Published: 05 August 2008 05 August 2008
The pace of improvements to Joomla 1.5 seems to be quickening this summer, as we're seeing new versions in weeks now.
The latest is Joomla! 1.5.5 [Mamni]. The Joomla Project refers to it as a "quick turnaround release to address the Duplicate Title error from 1.5.4
This release also contains "important SEF URL improvements and fixes for com_content in addition to a number of bug fixes and improvements."
Be sure to upgrade today, especially if you upgraded to version 1.5.4.
Need a template for your Joomla 1.5 site?
Joomla 1.5 rolls on to to version 4
- Written by Tom Elliott Tom Elliott
- Published: 24 July 2008 24 July 2008
The Joomla Project recently announced the release of the latest version of our favorite CMS, Joomla 1.5.4, codenamed "Naiki."
Quoting from the news item on Joomla.org, here are some of the bug fixes announced with this release:
- Several Search component fixes, including the removal of HTML tags as possible search results
- Banners can handle Flash items
- Polls and Latest and Most Popular articles listed in the Administrator now support GMT dates
- Several OpenID improvements
- Several critical security improvements
The Joomla Project recommends upgrading your version asap. Download and upgrade today!
Need a template for your Joomla 1.5 site?
Joomla 1.5.2 but we don't know Woi
- Written by Tom Elliott Tom Elliott
- Published: 01 April 2008 01 April 2008
Joomla! 1.5.2 has hit the shelves and is described as a "normal maintenance update" with some bug fixes and minor enhancements. Check it out. It's code named "Woi" but we don't know why.
The Joomla! Project also released its goals for the next release (1.5.3), which will offer more support for OpenID and many other improvements. Check them goals out, too!
If you subscribe to our blog, we'll let you know about these important Joomla! updates as soon as we know. Subscribe to our feed.