Joomla! has released version 3.7.3 of its Content Management System (CMS) software to address several security issues.
A remote attacker could exploit some of these vulnerabilities to take control of an affected website.
This update fixes 3 major vulnerabilities that affect all Joomla 1.7.3 to Joomla 3.7.2 websites. One of the vulnerabilities also affects Joomla 1.5 websites.
- Core – Information Disclosure (affecting Joomla 1.7.3-3.7.2)
- Core – XSS Vulnerability (affecting Joomla 1.7.3-3.7.2)
- Core – XSS Vulnerability (affecting Joomla 1.5.0-3.6.5)
We recommend that you update your Joomla website as soon as possible.