- Details
- Author : kaveh
- Hits : 94
joomla! 5.2.4 and joomla! 4.4.11 released
Joomla is an open source content management system (CMS) that allows users to easily and professionally manage their websites and blogs. Since its first release in 2005, Joomla has become one of the most popular CMSs in the world. The platform is known for its flexibility, features, and active community.
On 18 February 2025 The Joomla! Project is pleased to announce the release of joomla 5.2.4 and joomla 4.4.11. This is a security and bug fix release for the 5.x and 4.x series of joomla. These releases continue joomla’s high standards in accessible web design, highlighting Joomla's values of inclusiveness, simplicity and security into an even more powerful open-source web platform.
Website and online store design, professional Linux hosting, Joomla SEO
Security issues in Joomla 5.2.4 and Joomla 4.4.11
- Core - SQL injection vulnerability in Scheduled Tasks component
This vulnerability allows attackers to send malicious queries to the database, thereby gaining access to sensitive information such as usernames, passwords, and other data. This vulnerability is usually caused by a lack of validation of user inputs, which can lead to unauthorized changes to data or intrusion into the system. For this reason, it is very important to update to the latest version of Joomla and use appropriate security software to protect against SQL Injection attacks.
SQL Injection Attacks
SQL Injection Attacks are one of the most common and dangerous types of cyberattacks that aim to gain unauthorized access to databases through SQL queries. This type of attack occurs when an attacker is able to inject invalid input into applications that interact with the database. Typically, this input is submitted via web forms, URLs, or APIs.
By injecting malicious SQL code instead of valid input, an attacker can send commands to the server that can access, modify, or delete data. For example, they can obtain usernames and passwords, or extract sensitive information from the database.
Solutions to combat SQL Injection attacks
- Using security software dedicated to Joomla such as RSFirewall and Admin Tools pro and other powerful plugins that you can buy the original version from us.
- Using Prepared Statements: This technique allows programmers to separate input parameters from the SQL code. This prevents malicious queries from being executed.
- Input Validation: Properly and thoroughly checking all user inputs before processing them can prevent malicious code injection.
- Using ORM (Object Relational Mapping): ORMs automatically prevent SQL Injection because they create queries in a more secure way.
- Keeping software up to date: Regularly updating software and content management systems, especially Joomla, can help address known vulnerabilities.
- Monitoring and logging: Tracking database activity and logging alerts and unusual activities can help identify potential attacks.
- By following these strategies, SQL Injection attacks can be effectively prevented and information systems security can be improved.
Bug fixes and improvements in Joomla 5.2.4
- Fix namespace map creation on PHP 8.4
- Fix PHP Warning for debuguser, debuggroup
- Fix handling of null values on update row
- Fix cache counting issue - correctly count number of files
- Fix permissions for manually running scheduled tasks
- Tag Router: Allow numeric/CSV IDs (Regression)
- Fix for Composer update to enshrined/svg-sanitize to resolve SVG upload issues
- Fix for Article cannot be saved successfully on the front-end
- Fix media downloads with spaces
- Finder Router: Filter out unnecessary query elements
and more ...
see more details for joomla 5.2.4 on the GitHub website Or click on the address of the original news source (Joomla) at the end of the post.
Joomla 5 is the latest main version. No new features will be added in Joomla 4 and it will only receive security updates until October 14, 2025.
Don't worry anymore!
The most complete directory of Joomla templates and extensions
Continued at source ...
source + download : joomla 5.2.4 and joomla 4.4.11
Author : kaveh rezaei
Welcome to my website! Due to the volume of conversations, it may take some time for me to respond to you, in any case, I will respond to you as soon as possible. thanks Admin
