Author Topic: Joomla 3.8 fixes serious LDAP authentication issue, update now  (Read 73 times)

Offline Bugbatter

  • Microsoft® MVP
  • Administrator
  • Diamond Member
  • Posts: 10358
Joomla 3.8 fixes serious LDAP authentication issue, update now
« on: September 25, 2017, 10:05:44 AM »
Version 3.8 of Joomla, the world’s second-most popular website content management system (CMS), is out. The update includes fixes for two security issues including a very serious flaw in Joomla’s LDAP Authentication Plugin.

Although the CMS’s popularity is a distant second behind the juggernaut that is WordPress, it is running on over 3% of the world’s websites today (that’s tens of millions of sites).

The first vulnerability fixed in the 3.8 release is an LDAP injection vulnerability that has been kicking around for almost a decade, until its recent discovery.

https://nakedsecurity.sophos.com/2017/09/25/joomla-3-8-fixes-serious-ldap-authentication-issue-update-now/

Microsoft MVP Consumer Security 2006-2016
Microsoft Windows Insider MVP 2016-


There are any comments for this topic. Do you want to be the first?