Joomla 3.6.4 Critical Security Release - Update Now!

Print

 

Joomla 3.6.4 has just been released and it fixes two critical security vulnerabilities and a two-factor authentication bug.

This is a very important release and all Joomla 3.4.4 to 3.6.3 sites need to be quickly updated to this new release.

You can read the full Joomla 3.6.4 announcement for more details, but to make things super clear here is a list of recommended actions depending on your installed version:

And, as always, make a full backup of your website before you attempt any upgrade.

Community Builder 2.0.15 and all our latest CB add-ons versions are running fine on Joomla 3.6.4 according to our tests.

Beat, member of both CB Team and of the Joomla Security Strike Team (JSST), insists on the urgency and the importance of this Joomla 3.6.4 upgrade: Stop doing what you are doing and Upgrade Now. If you can't, then take an off-site archive-backup of your site Now. Only the latest versions of Joomla and of all your extensions and add-ons, which are the only ones maintained are considered safe at all times.

Keep your Joomlapolis membership active and your sites up to date at all times!

Some hosters who care for Joomla Security have already implemented WAF modsecurity rules to protect their customers. Joomlapolis Web Hosting Services have also done so, even before the 3.6.4 release!