There is a major exploit on sites that are running the Joomla CMS and it appears that many sites have yet to be updated to prevent the vulnerability.
The Joomla team just released a new Joomla version (3.4.5) to fix some serious security vulnerabilities. The most critical one is a remote and unauthenticated SQL injection on the com_contenthistory module (included by default) that allows for a full take over of the vulnerable site.
The security issue was classified as high in severity.
Joomla released the patch last week, but many Joomla sites haven’t been patched and are being exploited. Joomla does have updates that are somewhat automated, but they still require the user to start the update process, it isn’t done automatically like WordPress does.
They did make the unusual move to preannounce a patch would be imminent, which did mean some site owners were ready to install the patch when it released. But it also took only 4 hours from the time Joomla released the patch to when sites started to be hit by hackers exploiting the SQL injection vulnerability.
Joomla users should update their sites immediately, and if they have been hacked – which sounds likely – they have a list of steps to follow to clean the exploit.
Jennifer Slegg
Latest posts by Jennifer Slegg (see all)
- 2022 Update for Google Quality Rater Guidelines – Big YMYL Updates - August 1, 2022
- Google Quality Rater Guidelines: The Low Quality 2021 Update - October 19, 2021
- Rethinking Affiliate Sites With Google’s Product Review Update - April 23, 2021
- New Google Quality Rater Guidelines, Update Adds Emphasis on Needs Met - October 16, 2020
- Google Updates Experiment Statistics for Quality Raters - October 6, 2020