Joomla! 1.5 RC4
Thursday, December 20th, 2007Joomla! 1.5 RC4 — Introducing Karibu:
Just a week and a half ago people from all over the globe gathered in various locations to do a little Bug Squashing… today the fruits of their labour can be revealed as we announce the release of Joomla! 1.5 RC4. This release is code named Karibu which is Swahili for nearby, close, close by, at hand… all terms that we feel reflect the nature of this release.
Karibu marks an important milestone in 1.5’s development, as barring any major issues we believe it will be the last release candidate, with the next release being the big one… Joomla! 1.5 stable.
Security Fixes:
- SECURITY [HIGH] Critical CSRF allow portal compromise - Administrator components.
- SECURITY [HIGH] Fixed registered user privilege escalation vulnerability.
- SECURITY [MEDIUM] Fixed administrators can promote other users to administrator group.
- SECURITY [LOW] XSS vulnerability in com_poll.
Entries (RSS)