The popular CMS Joomla has received a new update, which has several security optimizations on board. If you are using the content management operating system, it is advisable to install the latest version as soon as possible.
To give you an overview of what's new in Joomla 3.9.20 we have summarized the most important changes in a changelog:
Changelog for Joomla 3.9.20
- Low Priority - Core - CSRF in com_installer ajax_install endpoint (affecting Joomla! 3.7.0 through 3.9.19) More information "
- Moderate Priority - Core - Missing checks can lead to a broken usergroups table record (affecting Joomla! 2.5.0 through 3.9.19) More information "
- Low Priority - Core - CSRF in com_privacy remove-request feature (affecting Joomla! 3.9.0 through 3.9.19) More information "
- Low Priority - Core - Variable tampering via user table class (affecting Joomla! 3.0.0 through 3.9.19) More information "
- Low Priority - Core - Escape mod_random_image link (affecting Joomla! 3.0.0 through 3.9.19) More information "
- Low Priority - Core - System Information screen could expose redis or proxy credentials (affecting Joomla! 3.0.0 through 3.9.19) More information "
- Bug fixes and Improvements
- Upload & Update tab of Joomla Update Component: Fix to allow upload of ZIP filetype only #29877
- Local database server: Allow optional port numbers #29567
- Beez3 Template: Markup fix for the Tabs layout of com_contact #29636
- Beez3 Template: Allow custom field editing on frontend #29577
- Backend cache cleared when purging updates #29603
Source Changelog: Joomla.org
