The Joomla! Project is pleased to announce the release of Joomla 4.3.2 This is a security and bug fix release for the 4.x series of Joomla.
This release continues Joomla 4's high standards in accessible web design, highlighting Joomla's values of inclusiveness, simplicity and security into an even more powerful open-source web platform.
Security issues fixed with 4.3.2
- [20230501] Low Severity - Low Impact - Low Probability - Open Redirect and XSS within the mfa selection (affecting Joomla! 4.2.0 - 4.3.1)
- [20230502] Moderate Severity - Critical Impact - Low Probability - Bruteforce prevention within the mfa screen (affecting Joomla! 4.2.0 - 4.3.1)
Bug fixes and Improvements with 4.3.2
This version fixes issues encountered during the update process by a number of users. In particular this release addresses:
Accessibility
- hide table headers in tables rather than omit them when 'show headings' is set to 'no'
Banners
- aria-label not translated in com_banners
- reset statistics on banner duplication
- cannot batch copy banners
Contacts
- cannot batch copy contacts'
Content
- Content component improved validation when only positive integers are allowed
Editors
- TinyMCE prevents white text on a white background in preview
- TinyMCE editor plugin language of parts fails if subform fields are empty
- Codemirror corrects path for keybinding script
Fields
- re-introduction of specific layouts to render Contact custom fields
- calendar type min/max year
- PHP warning when preparing Text field
Guided Tours
- escaping of data on update or new installs is unnecessary for the 'extensions' column
- banners tour is skipping a few fields
- order of the tours in the modal should no be sorted automatically, use the tour's view order instead
Media Manager
- replace 'an error occurred' with 'this file type is not supported'
- refactor the session fallback
- remove warning in console
Mail Templates
- tag needs to be quoted before being passed onto the regular expression
- newly created mail template is not properly recorded in the database (missing extension data and double arrayed tags)
Smart Search
- add padding to highlighted search words in smart search
- detect whether Memory engine is supported
Tags
- router issues on multilingual sites, breaking old URLs
- hide the filter_tag parameter from the URL when the menu item is created with category type and filtering by tag or tags
Template
- template parameter invalid json string
- template manager PHP 8.1 warnings removal
- missing Cassiopeia black color variable
- Cassiopeia menu breakpoint for hamburger to prevent vertical menu
User
- javascript error on login page when MFA
- Text() not found on user login
- category access levels should not apply to users having core.admin access
- User groups tab use invalid checkbox ids
- Module positions do not show in com_user settings
- removed login message on login in the frontend
- Fix submit button focus on frontend MFA captive login page when using Webauthn
Others
- allow new category when no other category exists
- when a component is disabled, menu items' icon should show 'component not found' and represent a warning rather than a cross with 'publish item' tooltip
- improved messaging when an extension is missing checksum information (hash codes proving the file is genuine)
- Articles categories module caching no longer fails
- make schedule runner/keepalive work with adblockers/no script
- remove any spaces from the disable_functions string in the php.ini before exploding into an array for checking and prevent error
- undefined key in HTMLDocument setBuffer
- PluginHelper::getLayoutPath should work in CLI (in non web context)
- show empty state layout only when cache contains no data
- improved RSS page title
- update of the help table of content
- PHP 8.2 warnings in Multilingual Sample Data plugin
- list-view .js should work with Ajax content
Visit GitHub for the full list of bug fixes.
Click or press here for full release information.
It's extremely important to keep your Joomla installation, and extensions up to date to minimise the risk of your site being compromised, you should also check that you are not using vulnerable extensions by visiting Joomla! Vulnerable Extensions List.
Many site owners are totally unaware of the status of their Joomla websites, databases, and hosting environments, the potential risks of being compromised, and the implications of private personal data held. Also many site owners are paying extortionate hosting fees for below standard services running on out of date and insecure hosting environments.
What Joomla Support Services do you provide?
Supporting, building, hosting, maintaining and optimising and all kinds of Joomla websites since 2005 we have gained vast experience. This combined with our Joomla Website Support System enables us to work very efficiently with any Joomla related project.
We have worked on several hundred Joomla websites ranging from sites with a few pages to sites with several hundred thousand pages including multi language sites. Taking on all kinds of Joomla related projects, including;
- Adding additional functionality.
- Adding content delivery networks.
- Adding E-Commerce along with shopping carts.
- Adding multiple anti-spam solutions.
- Adding payment gateways.
- Adding user management and subscription memberships.
- Building new Joomla websites.
- Customising Joomla extensions.
- Customising Joomla templates.
- Developing all kinds of forms including API integrations and auto field population using GeoIP services.
- Developing custom Joomla extensions.
- Developing custom Joomla templates.
- Implementing GDPR compliance.
- Implementing HTTP security headers.
- Joomla Extension Installation and configuration.
- Joomla Installation and configuration on your hosting.
- Joomla search engine marketing,
- Joomla search engine optimisation.
- Joomla site backup restoration on your hosting.
- Joomla version updates
- Joomla website speed optimisation.
- Making Joomla websites responsive and mobile friendly.
- Malware removal including file and database cleanup.
- Migrating existing websites to Joomla including WordPress and none CMS websites.
- Producing AMP versions of Joomla websites.
- Resolving security-related issues.
- SSL certificate installation.
along with support and training, and anything required to keep Joomla Websites fast, functional, secure, and stable.
Once you become a customer you get access to a Highly Experienced Joomla Developer and;
- Access to our secure private support helpdesk site where access credentials are kept along with tasks and changes which are documented in detail.
- Use of our ticketing system where bugs can be reported, questions asked, and additional features can be requested.
Do you take backups?
Yes, prior to making any changes to your Joomla website;
- We ensure you have an adequate backup system in place and take a backup of the site and database. Our preferred backup component is Akeeba Backup Professional for Joomla! (Commercial License $55), If your site doesn't already have it we will Install and configure it on your website.
- When a site has major issues or requires major extension upgrades, major Joomla version upgrades, template or template framework upgrades, major PHP version changes etc.. we clone the site and produce a test site to test changes prior to making changes to your live site. We are very experienced and understand which updates are safe and which updates cause problems. We prefer to put a test site on a sub domain to achieve some separation from a live site but this all depends on your hosting setup.
We have several VPS servers including a development Ubuntu/Plesk server with big storage attached where most Joomla sites we manage transfer an encrypted backup to each day. Apart from backup storage this is very useful to spin up a copy of a site for development, Joomla or PHP updates etc. This is useful if your host only allows one database for example and a test site is required for major updates, also on some occasions we have set up an older PHP version that most hosts don't allow so we can restore an old broken site for development.
Can you update our Joomla version and extensions?
Yes, for Joomla version updates order our hourly Joomla Specialist Support and Maintenance service, press the add to cart button, select a minimum of one hour and submit a ticket on our helpdesk.
Once you become a customer you get access to a Highly Experienced Joomla Developer and;
- Access to our secure private support helpdesk site where access credentials are kept along with tasks and changes which are documented in detail.
- Use of our ticketing system where bugs can be reported, questions asked, and additional features can be requested.
Once an order is placed for the first time and paid for we create you a user account on our secure private support helpdesk site where we will request information which you can provide securely, Your access credentials will be emailed to you as soon as your account is created.
Prepaid support it given high priority, with all of our hourly support time is charged in 10 minute increments and the week ends each Sunday at midnight UK time. All time is logged in your private area on our secure private support helpdesk and detailed invoices are issued weekly along with account statements.
What about major Joomla updates, rebuilds and redesigns?
If you are considering major updates and getting your site stable, fast, secure and to the Latest Joomla version see our Joomla Website and Hosting Audit service. Our full audit of the Joomla Website and Hosting including extensions, templates, overrides, SEO status, page delivery speed status, configuration and security.
Following the audit and testing you will receive a detailed report including the status of your site and your hosting along with detailed recommendations and options for updating your site including templates and extensions.
You can then address the issues yourself, use your existing developer or use our Joomla Specialist services to ensure that your site is stable and secure and your hosting is adequate and configured correctly.
Once you become a customer you get access to a Highly Experienced Joomla Developer and;
- Access to our secure private support helpdesk site where access credentials are kept along with tasks and changes which are documented in detail.
- Use of our ticketing system where bugs can be reported, questions asked, and additional features can be requested.
I have an Urgent Joomla website problem, can you help?
Yes, we have a Joomla Website and Hosting Diagnostics service for these situations. We analyse the Joomla website errors if web pages are broken or a site is down and create a detailed report with a list of recommendations for resolving issues on the site. If we have a solution that can be applied quickly even as a temporary fix we will fix the issue for you.
Based on the analysis you will be provided with a detailed report and a list of recommendations for resolving issues on the site. You can then address the issues yourself, use your existing developer or use our Joomla Specialist services.
Includes;
- Access to our secure private support helpdesk site where all analysis, testing, recommendations, and changes are documented in detail.
- Use of our ticketing system where bugs can be reported, questions asked, and additional features can be requested.
Once an order is placed for the first time and paid for we create you a user account on our secure private support helpdesk site where we will request information which you can provide securely, Your access credentials will be emailed to you as soon as your account is created.
Please note that even though we produce and maintain Joomla websites in multiple languages for multiple clients worldwide our native language is English.
Do you provide ongoing Joomla Support and Maintenance?
Yes we provide ongoing Joomla Support and Maintenance Services to keep your Joomla website and extensions up to date. Once a site is added to our support system we usually agree a maximum monthly spend which will never be exceeded without prior authorisation and the site is kept up to date on a regular basis.
Contact us to discuss ongoing Joomla Support and Maintenance Services.
Related Content
Let's celebrate! The Joomla! Project is pleased to announce the release of Joomla 5.2.2. This is a security and bug fix release for the 5.x series of ...
The Joomla! Project is pleased to announce the release of Joomla 5.2.1. This is a security release for the 5.2 series of Joomla..This release continue...
Let's celebrate! The Joomla project is thrilled to announce the release of Joomla 5.2 along with Joomla 4.4.9. This new minor version of Joomla 5.2 br...
Let's celebrate! The Joomla! Project is pleased to announce the release of Joomla 5.1.4, alongside Joomla 4.4.8. This are bug fix releases for the 5.x...
