Security updates in Wordpress 4.9.8, Joomla! 3.8.12 and Drupal 8.5.6
Following security issues have arisen in CMSs and taking measures in order to maintain safe may be necessary.
Recent security issues in CMSs
- Joomla!
- Core - Local File Inclusion with PHP 5.3 (Versions 2.5.0 - 3.8.8) - CVE-2018-12712
- Core - XSS vulnerability in language switcher module (Versions 1.6.0 - 3.8.8) - CVE-2018-12711
- Core - Hardening the InputFilter for phar stubs (Versions 1.5.0 - 3.8.11) - CVE-2018-15882
- Core - Stored XSS vulnerability in the frontend profile (Versions 1.5.0 - 3.8.11) - CVE-2018-15880
- Core - ACL Violation in custom fields (Versions 3.7.0 - 3.8.11) - CVE-2018-15881
- Drupal
- Core - 3rd party libraries security update (Versions 8.x: <8.5.6) - SA-CORE-2018-005
- Wordpress
- Core - Arbitrary code execution (Versions <4.9.7) - CVE-2018-12895
Latest CMS releases
- Joomla! 3.8.12 του since August 2018
- Drupal 8.5.6 since August 2018
- Wordpress 4.9.8 since August 2018
Post date:
Monday, September 3, 2018 - 23:43