Joomla! 4.3.2 Released

Joomla! 4.3.2 Released

The Joomla! Project is pleased to announce the release of Joomla 4.3.2 This is a security and bug fix release for the 4.x series of Joomla.

This release continues Joomla 4's high standards in accessible web design, highlighting Joomla's values of inclusiveness, simplicity and security into an even more powerful open-source web platform.

Security issues fixed with 4.3.2

  • [20230501] Low Severity - Low Impact - Low Probability - Open Redirect and XSS within the mfa selection (affecting Joomla! 4.2.0 - 4.3.1)
  • [20230502] Moderate Severity - Critical Impact - Low Probability - Bruteforce prevention within the mfa screen (affecting Joomla! 4.2.0 - 4.3.1)

Bug fixes and Improvements with 4.3.2

This version fixes issues encountered during the update process by a number of users. In particular this release addresses:

Accessibility

  • hide table headers in tables rather than omit them when 'show headings' is set to 'no'

Banners

  • aria-label not translated in com_banners
  • reset statistics on banner duplication
  • cannot batch copy banners

Contacts

  • cannot batch copy contacts'

Content

  • Content component improved validation when only positive integers are allowed

Editors

  • TinyMCE prevents white text on a white background in preview
  • TinyMCE editor plugin language of parts fails if subform fields are empty
  • Codemirror corrects path for keybinding script

Fields

  • re-introduction of specific layouts to render Contact custom fields
  • calendar type min/max year
  • PHP warning when preparing Text field

Guided Tours

  • escaping of data on update or new installs is unnecessary for the 'extensions' column
  • banners tour is skipping a few fields
  • order of the tours in the modal should no be sorted automatically, use the tour's view order instead

Media Manager

  • replace 'an error occurred' with 'this file type is not supported'
  • refactor the session fallback
  • remove warning in console

Mail Templates

  • tag needs to be quoted before being passed onto the regular expression
  • newly created mail template is not properly recorded in the database (missing extension data and double arrayed tags)

Smart Search

  • add padding to highlighted search words in smart search
  • detect whether Memory engine is supported

Tags

  • router issues on multilingual sites, breaking old URLs
  • hide the filter_tag parameter from the URL when the menu item is created with category type and filtering by tag or tags

Template

  • template parameter invalid json string
  • template manager PHP 8.1 warnings removal
  • missing Cassiopeia black color variable
  • Cassiopeia menu breakpoint for hamburger to prevent vertical menu

User

  • javascript error on login page when MFA
  • Text() not found on user login
  • category access levels should not apply to users having core.admin access
  • User groups tab use invalid checkbox ids
  • Module positions do not show in com_user settings
  • removed login message on login in the frontend
  • Fix submit button focus on frontend MFA captive login page when using Webauthn

Others

  • allow new category when no other category exists
  • when a component is disabled, menu items' icon should show 'component not found' and represent a warning rather than a cross with 'publish item' tooltip
  • improved messaging when an extension is missing checksum information (hash codes proving the file is genuine)
  • Articles categories module caching no longer fails
  • make schedule runner/keepalive work with adblockers/no script
  • remove any spaces from the disable_functions string in the php.ini before exploding into an array for checking and prevent error
  • undefined key in HTMLDocument setBuffer
  • PluginHelper::getLayoutPath should work in CLI (in non web context)
  • show empty state layout only when cache contains no data
  • improved RSS page title
  • update of the help table of content
  • PHP 8.2 warnings in Multilingual Sample Data plugin
  • list-view .js should work with Ajax content

Visit GitHub for the full list of bug fixes.

Click or press here for full release information.

It's extremely important to keep your Joomla installation, and extensions up to date to minimise the risk of your site being compromised, you should also check that you are not using vulnerable extensions by visiting Joomla! Vulnerable Extensions List.

Many site owners are totally unaware of the status of their Joomla websites, databases, and hosting environments, the potential risks of being compromised, and the implications of private personal data held. Also many site owners are paying extortionate hosting fees for below standard services running on out of date and insecure hosting environments. 

Can you update our Joomla version and extensions?

Yes, for Joomla version updates order our hourly Joomla Specialist Support and Maintenance service, press the add to cart button, select a minimum of one hour and submit a ticket on our helpdesk.

Once you become a customer you get access to a Highly Experienced Joomla Developer and;

  • Access to our secure private support helpdesk site where access credentials are kept along with tasks and changes which are documented in detail.
  • Use of our ticketing system where bugs can be reported, questions asked, and additional features can be requested.
Once an order is placed for the first time and paid for we create you a user account on our secure private support helpdesk site where we will request information which you can provide securely, Your access credentials will be emailed to you as soon as your account is created.

Prepaid support it given high priority, with all of our hourly support time is charged in 10 minute increments and the week ends each Sunday at midnight UK time. All time is logged in your private area on our secure private support helpdesk and detailed invoices are issued weekly along with account statements.

Related Content

The Joomla! Project is pleased to announce the release of Joomla 5.0.3 and 4.4.3. This is a security and bug fix release for the 5.x and 4.x series of...

We are proud to announce the release of Joomla 3.10.14. This version backports the security fix for CVE-2023-40626. This is a commercial security rele...

You can now order our remote Joomla Website Support Services online and pay in GB Pounds, Euros or US Dollars by credit/debit card or by bank transfer...

The Joomla! Project is pleased to announce the release of Joomla 5.0.2 and 4.4.2. This is a bug fix release for the 5.x and 4.x series of Joomla. This...

At Joomla Fixers we provide remote on demand and routine Joomla Website Support, Website Design, Website Development, Website Maintenance, Website Marketing and Website Hosting services to both end users and web design studios alike Worldwide.

Our vast experience gained in supporting, repairing, building, hosting, maintaining and optimising Joomla websites since 2005 combined with our Joomla Website Support System enables us to work very efficiently.

Joomla Fixers-Joomla Website Support and Maintenance Specialists
Realvision Internet Limited
124 City Road
London, EC1V 2NX
United Kingdom


Terms and Conditions
Privacy Policy
Cookie Policy
Privacy-respecting analytics by Matomo

Secure Payments Powered by Stripe