Category Archives: Security Update

Keep Your Website Secure
Find out the important measures, including keeping software updated, that will keep your website secure here.

Drupal 8.1.10 Released

Drupal 8.1.10 was released today. The new version includes fixes for three security issues, including a cross-site scripting (XSS) vulnerability and an information disclosure vulnerability allowing for export of configuration settings by those that should not be able to do that.

More information is available in the release notes.

Posted in Drupal, Security Update | Leave a comment

TYPO3 6.2.27, 7.6.11 and 8.3.1 Released

TYPO3 6.2.27, 7.6.11, and 8.3.1 were released today. The new versions contain bug fixes and fixes for two “low” severity security vulnerabilities, a a cross-site scripting (XSS) vulnerability and a cache flooding vulnerability (additional action after updating is required to resolve this one).

More information is available in the release notes for 6.2.277.6.11, and 8.3.1.

Posted in Security Update, TYPO3 | Leave a comment

Moodle 2.7.16, 2.9.8, 3.0.6, and 3.1.2 Released

Moodle 2.7.16, 2.9.8, 3.0.6, and 3.1.2 were released today. All of the new versions include security fixes. Details of the security vulnerabilities fixed will be released in a week. Versions 3.0.6 and 3.1.2 also include “small improvements” and bug fixes.

More information is available in the release notes for 2.7.162.9.83.0.6, and 3.1.2.

Posted in Moodle, Security Update | Leave a comment

WordPress 4.6.1 Relased

WordPress 6.1 was released today. The new version fixes a number of bugs in 4.6 and fixes two security vulnerabilities, across-site scripting (XSS) vulnerability and a path traversal vulnerability.

More information is available in the release notice and Codex document.

Posted in Security Update, WordPress | 1 Comment

MediaWiki 1.23.15, 1.26.4, and 1.27.1 Released

MediaWiki 1.23.15, 1.26.4, and 1.27.1 were released today. The new versions fix a number of security issues.

More information is available in the release announcement.

Posted in MediaWiki, Security Update | Leave a comment

Joomla 3.6.1 Released

Joomla 3.6.1 was released today. The new version includes bug fixes and fixes several “low level security issues”, including a cross-site scripting (XSS) vulnerability.

More information is available in the release announcement.

Posted in Joomla, Security Update | Leave a comment

Piwik 2.16.2 Released

Piwik 2.16.2 was released today. The new version includes some small new features, bug fixes, and fixes for several cross-site scripting (XSS) security issues.

More information is available in the changelog.

Posted in Piwik, Security Update | Leave a comment

concrete5 5.7.5.9 Released

concrete5 5.7.5.9 was released yesterday. The new version includes small feature improvements and bug fixes. The new version also “fixes minor security vulnerability with pagination parameters”.

More information is available in the release notes.

Posted in concrete5, Security Update | Leave a comment

TYPO3 6.2.26, 7.6.10 and 8.2.1 Released

TYPO3 6.2.26, 7.6.10, and 8.2.1 were released today. The new versions contain bug fixes and “critical security fixes”, including fixes for cross-site scripting (XSS), SQL injection, and unsafe unserialize vulnerabilities.

More information is available in the release notes for 6.2.267.6.10, and 8.2.1.

Posted in Security Update, TYPO3 | Leave a comment

Drupal 8.1.7 Released

Drupal 8.1.7 was released today. The new version includes a fix for a vulnerability in the third-party library Guzzle included and used in Drupal 8.

More information is available in the release notes.

Posted in Drupal, Security Update | Leave a comment