Admin Tools 7.2.3 Stable

Released on: 2023-02-16 08:20 CST

What's new?

Block Joomla API exploitation in Joomla 4.0 to 4.2. Joomla 4.0-Beta2 up to and including Joomla 4.2.7 have had a critical security issue in the Joomla API which would allow an attacker to bypass the API authentication, allowing the to read (but not modify) information from your site. This would even allow them to read the contents of your configuration.php file which contains all the secrets such as your database connection information, email server configuration, and the secret key used for the security tokens and settings encryption on your site. This issue was addressed in Joomla 4.2.8. If for any reason you are unable to upgrade to Joomla 4.2.8 you are advised to immediately install Admin Tools Professional 7.2.3 which contains an automatic mitigation for this issue.

Bug fixes and miscellaneous changes. Please read the CHANGELOG below.

Joomla! and PHP versions supported

This version only runs on Joomla 4.

Please consult our Compatibility page. It explains our version support policy and lists which versions of our software are compatible with which versions of Joomla and PHP.

Changelog

New features

  • Block Joomla API exploitation in Joomla 4.0 to 4.2

Bug fixes

  • [LOW] Automatic IP blocking notification email: wrong shortcode for IP lookup
  • [LOW] Wrong label for Mark Safe / Unsafe in PHP File Change Scanner reports' toolbar