joomla! 5.3.4 and joomla 4.4.14 released

Joomla 5 Security and Bug Fix Releases

Joomla is a popular and widely used content management system (CMS) that has been releasing regular updates over the years to improve security, performance, and features. Joomla 5 is also an important step in the evolution of this platform. In this article, we will briefly and accurately discuss the issue of security and bug fixes in Joomla 5: its importance, release process, impact on site administrators, and best practices for keeping sites up to date.

The Importance of Security Updates and Bug Fixes

• Threat Protection: Security weaknesses in CMSs can allow attackers to hack your site, steal user information, or distribute malware. security updates close vulnerabilities and prevent common attacks like XSS, SQL Injection, and CSRF.
• Better Stability and Performance: Bug fixes improve functionality, reduce performance errors, and improve compatibility with different server environments. These directly impact user experience and SEO.
• Ecosystem Compatibility: Extensions, themes, and external services are usually based on the APIs and behavior of the original version; updates can increase compatibility or require extensions to be updated in the event of major changes.

Joomla 5 Security Release Process

• Identification and Reporting of Issues: Vulnerabilities are typically reported by developers, security researchers, or users. The Joomla team has a defined response path for reporting vulnerabilities so that necessary action can be taken before the issue becomes public.
• Patch Research and Production: After receiving the report, the Joomla technical team analyzes the issue and creates a patch or update. This phase includes internal testing, code review, and side-effects analysis.
• Simultaneous Release of Security Bulletin: The security bulletin is released with an official bulletin that provides a general description of the nature of the issue and its severity. In some cases, full technical details are not released to prevent exploitation before the patch is installed.
• Automatic and Manual Updates: Joomla provides mechanisms to alert site administrators and perform automatic or manual updates. Depending on the severity of the issue, administrators are advised to install the released version immediately.
• Follow-up and subsequent issue resolution: After release, the development team follows up on feedback and releases additional patches or fixes if new issues arise.

Impact of security patches on site administrators and developers

• Need to plan for updates: Every site administrator should have a plan for applying updates, such as testing in a staging environment, backing up before updating, and scheduling changes to reduce risks.
• Regular backups: Before each update, it is essential to take a full backup of the database and files so that if a problem occurs, you can revert to the previous version.
• Plugin and theme compatibility testing: Some Joomla updates may be incompatible with older plugins or themes. Developers and administrators should test critical extensions in a test environment and use compatible versions if necessary.
• User training and awareness: Technical teams should provide site administrators and maintainers with sufficient information about the importance of updates and security practices.

Best practices for managing Joomla 5 updates

• Install and enable automatic security updates (if possible and after ensuring compatibility): Many sites are protected from threats faster by enabling automatic updates for security versions.
  Implement a staging environment: Run each update first in a test environment to measure its impact on the performance and compatibility of plugins.
• Backup before each update: Create a fully recoverable copy of files and database.
• Monitoring and logging: After the update, monitor the site for errors and suspicious behavior to quickly identify problems.
• Keep plugins and themes up to date: Get official plugins and themes from trusted sources and update them at the same time as Joomla core.
• Follow Joomla security announcements: Stay informed about updates and warnings by following the official Joomla website, security mailing list, or notification channels.

On September 30, 2025, the Joomla Project announced the release of Joomla 5.3.4 and Joomla 4.4.14 This release includes the resolution of 2 security holes and a number of bug fixes that improve the CMS experience. It is recommended to update your Joomla to the latest version to keep your website secure and increase its performance.

Security fixes Joomla 5.3.4 and 4.4.14

1. Core - Inadequate content filtering within the check Attribute filter code
2. Core - User-Enumeration in passkey authentication method 

Bug fixes and Improvements with 5.3.4

1. Update Icon of Miscellaneous Information in Contact
2. Fix deploy_version typo in com_scheduler
3. Fix for in the build process wrongly removed copyright messages
4. Restored Article Version Now Properly Checked Out to Current User
5. DELETE request returns a 204 when an item doesn't exists

And More ... ( In the source (link at the bottom of the page) )

   Joomla 5 is the latest main version. No new features will be added in Joomla 4 and it will only receive security updates until October 14, 2025.

Continued at source ...

source + download : joomla 5.3.4 and joomla 4.4.14

Author : kaveh

Comments (0)

Rated 0 out of 5 based on 0 voters

There are no comments posted here yet

Leave your comments

1. Posting comment as a guest. COM_KOMENT_LOGIN_LINK

Username

Password

Login to my account →

Name (Required)

Email (Required)

Website

Background

Rate this post:

Reset Rating

0 Characters

Attachments (0 / 3)

Share Your Location

Type the text presented in the image below

Cancel Submit Comment