Admin Tools 3.6.7 Stable

Released on: 2015-12-21 13:04 CST

Security advisory for Joomla! 3

The Joomla! project announced the immediate availability of version 3.4.7 which further enhances the fix of a very high priority security issue that was first addressed in 3.4.6. This issue has been discovered by different independent security researchers and affects all Joomla! versions from 1.5 onwards. However, the official patch to address this issue is only available for Joomla! 3.4. Unofficial patches exist for 1.5 and 2.5 but not for older 3.x versions..

Admin Tools contains a fix which addresses this issue on ALL Joomla! versions it runs on, including Joomla! 3.0, 3.1, 3.2 and 3.3. If unsure, run our Quick Setup Wizard and accept the default values to enable all the Web Application Firewall features necessary. We STRONGLY advise you to enable the SQLiShield, MUAShield and SessionShield features to successfully mitigate the two known major security issues which were discovered in Joomla! in the second half of 2015.

Joomla! 3.x only

Despite our policy of only allowing installation on the latest Joomla! release, this version will run on Joomla! 3.0, 3.1, 3.2, 3.3 and 3.4 to mitigate the aforementioned Joomla! security issue.

Please note that we will only provide full support for the latest Joomla! version. Some features –like the Change administrator directory– may not work at all in older Joomla! versions. We've thoroughly tested the security critical Web Application Firewall features against older releases of Joomla! and found them to be working properly.

PHP 5.3.4 or later 5.x version is required

This version requires PHP 5.3.4 or later (e.g. 5.3.29 which is twenty five versions newer than PHP 5.3.4), 5.4, 5.5 or 5.6. Please note that PHP 5.3 is obsolete since August 2014 and we're going to stop supporting it without warning in future versions of our software. We'd like to remind you that Joomla! 3.x does not currently support PHP 7. Since our software runs inside Joomla! by definition our software doesn't currently run on PHP 7 either.

Note: there is no such thing as PHP 6. PHP versions jumped from 5.6 to 7.0. Why? Well, it's a long story. TL;DR: It doesn't have to make sense, just accept it.

Changelog

Bug fixes

  • [LOW] Untranslated string COM_ADMINTOOLS_EMAILTEMPLATE_REASON_IPAUTOBAN in notification emails

New features

  • SessionShield to deal with PHP session data poisoning attacks

Removed features

  • Remove XSSShield

Release files

Admin Tools Core

com_admintools-3.6.7-core.zip

1.34 Mb

PHP 5.3 PHP 5.4 PHP 5.5 PHP 5.6 Joomla! 3.0 Joomla! 3.1 Joomla! 3.2 Joomla! 3.3 Joomla! 3.4

Download now