CALL US TODAYCALL NOW FREE: 1 800 MOTION

CALL TODAY: 1 800 66 84 66

BUILT-IN COLOR PICKER

COLOR PICKER

Lorem ipsum dolor sit amet, consectetur adipisicing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua

RESPONSIVE LAYOUT

RESPONSIVE LAYOUT

Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

MODERN DESIGN

MODERN DESIGN

Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur excepteur sint

Joomla! Security News

    • Project: Joomla!
    • SubProject: CMS
    • Impact: Low
    • Severity: Low
    • Versions: 3.6.0 - 3.9.12
    • Exploit type: Path Disclosure
    • Reported Date: 2019-November-01
    • Fixed Date: 2019-November-05
    • CVE Number: CVE-2019-18674

    Description

    Missing access check in the phputf8 mapping files could lead to an path disclosure.

    Affected Installs

    Joomla! CMS versions 3.6.0 - 3.9.12

    Solution

    Upgrade to version 3.9.13

    Contact

    The JSST at the Joomla! Security Centre.

    Reported By: Phil Taylor
    • Project: Joomla!
    • SubProject: CMS
    • Impact: High
    • Severity: Low
    • Versions: 3.2.0-3.9.12
    • Exploit type: CSRF
    • Reported Date: 2019-October-10
    • Fixed Date: 2019-November-05
    • CVE Number: CVE-2019-18650

    Description

    A missing token check in com_template causes a CSRF vulnerability.

    Affected Installs

    Joomla! CMS versions 3.2.0 - 3.9.12

    Solution

    Upgrade to version 3.9.13

    Contact

    The JSST at the Joomla! Security Centre.

    Reported By:Lee Thao from Viettel Cyber Security
    • Project: Joomla!
    • SubProject: CMS
    • Impact: Moderate
    • Severity: Low
    • Versions: 3.0.0-3.9.11
    • Exploit type: XSS
    • Reported Date: 2019-August-28
    • Fixed Date: 2019-September-24
    • CVE Number: CVE-2019-16725

    Description

    Inadequate escaping allowed XSS attacks using the logo parameter of the default templates.

    Affected Installs

    Joomla! CMS versions 3.0.0 - 3.9.11

    Solution

    Upgrade to version 3.9.12

    Contact

    The JSST at the Joomla! Security Centre.

    Reported By:Aswin M Guptha
    • Project: Joomla!
    • SubProject: CMS
    • Impact: Moderate
    • Severity: Low
    • Versions: 1.6.2 - 3.9.10
    • Exploit type: Incorrect Access Control
    • Reported Date: 2019-April-09
    • Fixed Date: 2019-August-13
    • CVE Number: CVE-2019-15028

    Description

    Inadequate checks in com_contact could allowed mail submission in disabled forms.

    Affected Installs

    Joomla! CMS versions 1.6.2 - 3.9.10

    Solution

    Upgrade to version 3.9.11

    Contact

    The JSST at the Joomla! Security Centre.

    Reported By:Sergey Brester
    • Project: Joomla!
    • SubProject: CMS
    • Impact: Moderate
    • Severity: Low
    • Versions: 3.9.7 - 3.9.8
    • Exploit type: Remote Code Execution
    • Reported Date: 2019-June-20
    • Fixed Date: 2019-July-09
    • CVE Number: CVE-2019-14654

    Description

    Inadequate filtering allows users authorised to create custom fields to manipulate the filtering options and inject an unvalidated option.

    Affected Installs

    Joomla! CMS versions 3.9.7 - 3.9.8

    Solution

    Upgrade to version 3.9.9

    Contact

    The JSST at the Joomla! Security Centre.

    Reported By:Benjamin Trenkle, JSST
Person 1

Art Director

Lorem ipsum dolor sit amet

Person 2

Interactive Director

Ut enim ad minim veniam

Person 3

Creative Director

Duis aute irure dolor

03 About Us

Ced ut perspiciatis unde omnis iste natus error sit voluptatem accusantium doloremque laudantium, totam rem aperiam, eaque ipsa quae ab illo inventore veritatis et quasi architecto beatae vitae dicta sunt explicabo.

04 Contact Us

200 MotionDesign Template

Your business address goes here
(123) 123-2468
[email protected]
www.motiontemplate.com