Joomla! Developer Network

There is always a great deal of Joomla! development activity underway and communicating with other developers in the community is essential. This site is a resource for anyone looking to build or maintain software based on the Joomla platform

  • Project: Joomla!
  • SubProject: All
  • Severity: Low
  • Versions: 2.5.0 and 1.7.0 - 1.7.4
  • Exploit type: Information Disclosure
  • Reported Date: 2012-January-29
  • Fixed Date: 2012-February-02

Description

Inadequate validation leads to information disclosure in administrator.

Affected Installs

Joomla! version 2.5.0, 1.7.4, and all earlier 1.7.x versions

Solution

Upgrade to version 1.7.5 or 2.5.1 or higher

Reported by Jakub Galczyk

Contact

The JSST at the Joomla! Security Center.

As was announced earlier this year, the Joomla! project is actively working toward shutting down JoomlaCode.org. In addition to assisting existing users with migrating data, we have also been busy managing our own data as well and would like to provide this update on our progress.


JoomlaCode Shutdown Update

In a reorganising of the Joomla! web properties, the PLT has decided to close down the Joomla! User Experience website (https://ux.joomla.org). This news isn’t really new news. Discussions about moving the JUX forum started in 2013 but the steps necessary to move and shut the forum down were never completed. Is the Production Leadership Team still interested in a Joomla! user’s experience? You can bet it is!


JUX is closing

Many of you may have noticed the message "Please note: Due to technical reasons we have had to disable the Install from Web Service. We are working to get it back online as soon as possible. To find extensions please use the Joomla! Extensions Directory at http://extensions.joomla.org"

Install from web


Status of the Install from Web

After an extended period of silence, the Production Leadership Team is happy to announce that we are moving forward with planning, preparing, and ultimately releasing version 2 of the Joomla! Framework. Over the last several weeks, we have begun building a roadmap and vision for the next major version of the Framework and are now ready to share with the community for review and feedback.


Framework v2 Roadmap

We recently received an email from google webmaster tools with the subject line: Hacking suspected: http://joomlacode.org/

Unfortunately, it appears that joomlacode.org is infected with content spam. When we realized this, our only concern is to protect our users. This will involve taking down the service in the very near future. This is an inconvenience for project owners using JoomlaCode to host projects for, and we are truly sorry.


JoomlaCode is closing

Joomla! CMS

Current Release 

View known Issues

Development Status

Nightly CMS builds for developers are available for download

Joomla! Framework

Joomla! Reading

Joomla! Programming

Joomla! Programming

Mark Dexter & Louis Landry
Joomla! Templates

Joomla! Templates

Angie Radtke