Joomla 3.9.13 is now available. This is a security fix release for the 3.x series of Joomla which addresses two security vulnerabilities and contains over 15 bug fixes and improvements.
Comment
Archive for CMS
979 results.
It’s time for our annual user and developer survey! If you’re a WordPress user or professional, we want your feedback. It only takes a few minutes to fill out the survey, which will provide an overview of how people use WordPress. We’re excited to announce that this year, for the first time, the survey is […]
October has been a busy month with preparations for WordCamp US as well as the next major release of WordPress. Read on to find out about all that work and more. WordPress 5.2.4 On October 14, WordPress 5.2.4 was released as a security release fixing 6 security issues. The fixes were backported to earlier versions […]
Sometimes, folks encounter a problem with their website that is hosted on a server using the cPanel hosting platform. When that happens, they often reach out to cPanel customer service or technical support for assistance. It seems logical, right? Your site is on a cPanel server, so cPanel is the obvious place to go for help. However, cPanel only creates the software that hosting providers use as a platform to offer their website hosting services. Most problems …
The third release candidate for WordPress 5.3 is now available! WordPress 5.3 is currently scheduled to be released on November 12 2019, but we need your help to get there—if you haven’t tried 5.3 yet, now is the time! There are two ways to test the WordPress 5.3 release candidate: Try the WordPress Beta Tester plugin (choose the “bleeding edge […]
During the week of November 5th, we are releasing an Autofixer for all servers that are running outdated versions of cPanel & WHM (any version older than Version 78). Affected servers will start updating to cPanel & WHM Version 78. We wanted to take this opportunity to break down precisely what is happening, who is affected, and the benefits of upgrading your servers to supported versions. The Fix is In The Autofixer will update affected servers …
UPDATE: Let’s Encrypt has extended the lifetime of ACMEv1 until November 8th, extending the life of the API for 1 week. November 1st is now a production brownout date, so you may be affected by a loss of service on that date. For further information please read the following: https://community.letsencrypt.org/t/end-of-life-plan-for-acmev1/88430/6 End of life for Let’s Encrypt Legacy, time to update! In August, we shared in a blog post that the Let’s Encrypt original API, ACMEv1, would be …
Empowering Generations of Digital Natives
Oct16
on October 16, 2019
at 8:03 pm
Posted In: Uncategorized
Technology is changing faster each year. Digital literacy can vary between ages but there are lots of ways different generations can work together and empower each as digital citizens. No matter whether you’re a parent or caregiver, teacher or mentor, it’s hard to know the best way to teach younger generations the skills needed to […]
The first release candidate for WordPress 5.3 is now available! This is an important milestone as we progress toward the WordPress 5.3 release date. “Release Candidate” means that the new version is ready for release, but with millions of users and thousands of plugins and themes, it’s possible something was missed. WordPress 5.3 is currently […]
Responsible Participation In Online Communities
Oct15
on October 15, 2019
at 7:41 pm
Posted In: Uncategorized
In our first article in this series, we highlighted the WordPress mission to democratize publishing. WordPress introduced a tool to independent and small publishers who did not have the resources of the larger publishing platforms. Access to a free content management system to create websites has empowered thousands of people to find their voice online. […]
WordPress 5.2.4 is now available! This security release fixes 6 security issues. WordPress versions 5.2.3 and earlier are affected by these bugs, which are fixed in version 5.2.4. Updated versions of WordPress 5.1 and earlier are also available for any users who have not yet updated to 5.2. Security Updates Props to Evan Ricafort for finding an […]
Becoming Better Digital Citizens Through Open Source
Oct14
on October 14, 2019
at 7:31 am
Posted In: Uncategorized
The WordPress Project is on a mission to democratize publishing. As WordPress empowers more people to participate in the digital space, we have the opportunity to make sure that everyone can participate safely and responsibly. Today marks the start of Digital Citizenship Week. We are going to share how open source can be used as […]
DNSSEC Clustering Now Available with PowerDNS
Oct10
on October 10, 2019
at 6:00 pm
Posted In: Uncategorized
In the event you missed it, we published a blog post back in December of 2018, announcing the deprecation of MyDNS and NSD. Now that PowerDNS has been the choice DNS Management tool of cPanel & WHM for several versions, the request for DNSSEC (Domain Name System Security Extensions) clustering has become even more popular. Well, you’ve been asking for it, and we’re ready to deliver it. Coming with cPanel & WHM Version 84 …
WordPress 5.3 Beta 3 is now available! This software is still in development, so we don’t recommend you run it on a production site. Consider setting up a test site to play with the new version. You can test the WordPress 5.3 beta in two ways: Try the WordPress Beta Tester plugin (choose the “bleeding edge nightlies” option) […]
Way back in EasyApache 3, if a user wanted to make updates to their Apache configuration, they would do so by using the Apache distiller to make said changes. As you all know, we’ve moved on from EasyApache 3 to EasyApache 4 and are ever working to improve the functionality and performance of the product. That being said, we are removing the Apache distiller in cPanel & WHM version 84. Let’s break this down. What is a …
You’ve probably heard that WordPress is open-source software, and may know that it’s created and run by volunteers. WordPress enthusiasts share many examples of how WordPress changed people’s lives for the better. This monthly series shares some of those lesser-known, amazing stories. Meet Alice Orru, from Sardinia, Italy. Alice Orru was born in Sardinia, an […]
September has been a particularly busy month in the WordPress community—a lot of important work has been done as everyone in the project works towards an upcoming major release. Read on to find out more about this and everything else that has been going on over the past month. WordPress 5.2.3 Security and Maintenance Release […]
WordPress 5.3 Beta 2 is now available! This software is still in development, so we don’t recommend running it on a production site. Consider setting up a test site to play with the new version. You can test the WordPress 5.3 beta in two ways: Try the WordPress Beta Tester plugin (choose the “bleeding edge […]
The end of the 2019 WebPros Summit has come, and it was an event for the books. We have enjoyed getting spend time with all of you, and cannot wait to do this again next year! We owe huge thanks to all of our attendees, sponsors, and exhibitors. We strive to put on the best event we possibly can for you, and joining us for these past few days is incredibly worth it. A big …
Joomla 3.9.12 is now available. This is a security fix release for the 3.x series of Joomla which addresses one security vulnerability and contains over 30 bug fixes and improvements.
[20190901] – Core – XSS in logo parameter of default templates
Sep24
on September 24, 2019
at 1:00 pm
Posted In: Uncategorized
- Project: Joomla!
- SubProject: CMS
- Impact: Moderate
- Severity: Low
- Versions: 3.0.0-3.9.11
- Exploit type: XSS
- Reported Date: 2019-August-28
- Fixed Date: 2019-September-24
- CVE Number: CVE-2019-16725
Description
Inadequate escaping allowed XSS attacks using the logo parameter of the default templates.
Affected Installs
Joomla! CMS versions 3.0.0 – 3.9.11
Solution
Upgrade to version 3.9.12
Contact
The JSST at the Joomla! Security Centre.
Reported By: Aswin M Guptha
WordPress 5.3 Beta 1 is now available! This software is still in development, so we don’t recommend running it on a production site. Consider setting up a test site to play with the new version. You can test the WordPress 5.3 beta in two ways: Try the WordPress Beta Tester plugin (choose the “bleeding edge […]
“I dare somebody to go to Atlanta and not have a good time” -Bryan Tyree Henry WebPros Summit 2019 is here. We’re on the road and in Atlanta, Georgia. This year promises to be the most exciting and diverse conference yet. If you haven’t done so, make sure you head on over to the WPS 2019 website to register and come join us! Nestled in the northern portion of the great southern state of Georgia …
#WebProsSummit19 Guest Blog: Halon Security
Sep18
on September 18, 2019
at 5:00 pm
Posted In: Uncategorized
Halon Security, a Swedish company with offices overlooking the beautiful city of Gothenburg, Sweden, is proud to be sponsoring the WebPros Summit 2019 in Atlanta, Georgia! While we’ve partnered with cPanel and sponsored conferences in the past, this year has special significance for us; taking part in the very first WebPros Summit in Atlanta, Georgia! Regardless if you are a hosting provider or managed service provider, secure email is undoubtedly an integral part of your …
The phrase “open source” has been in use much longer than you think, popping up as early as Thomas Willis‘ 1685 piece, The London Practice of, Or The Whole Practical Part of Physick, describing in medical terminology how a wound behaves. The modern usage of the phrase is a bit newer and has become the appropriate descriptor for a software product that gives the user permission to add/remove/change its source code, design, or contents. From casual …
Note from benny: WebPros Summit is an annual gathering of the web hosting community, and we want everyone to stay secure online for this year’s event. That’s why we’ve partnered with WLVPN to provide free VPN service to all of this year’s attendees. Here’s everything you need to know. WLVPN is here to keep you and your customers safe by protecting your internet privacy. We’re proud to be the official VPN sponsor of WebPros Summit. …
You’ve probably heard that WordPress is open-source software, and may know that it’s created and run by volunteers. WordPress enthusiasts share many examples of how WordPress changed people’s lives for the better. This monthly series shares some of those lesser-known, amazing stories. Meet Abdullah Ramzan, from Lahore, Punjab, Pakistan. Abdullah Ramzan was born and brought […]
WordPress 5.2.3 Security and Maintenance Release
Sep05
on September 5, 2019
at 1:51 am
Posted In: Uncategorized
WordPress 5.2.3 is now available! This security and maintenance release features 29 fixes and enhancements. Plus, it adds a number of security fixes—see the list below. These bugs affect WordPress versions 5.2.2 and earlier; version 5.2.3 fixes them, so you’ll want to upgrade. If you haven’t yet updated to 5.2, there are also updated versions […]
#WebProsSummit19 Guest Blog: LiteSpeed Technologies
Sep04
on September 4, 2019
at 5:30 pm
Posted In: Uncategorized
This is the first in a series of guest blogs around the 2019 Web Pros Summit. Please welcome Kacey Schroeder from LiteSpeed Technologies. LiteSpeed Technologies is honored to be a sponsor of WebPros Summit 2019 and long-term partners with cPanel. We first began collaborating with cPanel with the release of our original WHM plugin in 2013. cPanel introduced official support for LiteSpeed Web Server in 2014, as the only official third-party supported web server. This …
This has been a particularly busy month, with a number of interesting and ambitious proposals for the WordPress project along with active progress across the entire community. Core Development and Schedule The upcoming minor release of WordPress, v5.2.3, is currently in the release candidate phase and available for testing. Following that, the next major release […]