Joomla 1.0.11 closes security holes
Version 1.0.11 of the Joomla Content Management System (CMS) closes several security holes through which attackers could have planted script code or circumvented security mechanisms. The new version closes 27 holes in all, as well as removing various cosmetic flaws.
Because exploits often surface almost immediately after vulnerabilities in the popular CMS become public, administrators of the PHP software are advised to install the current version as soon as possible. Each installed add-on module should also be inspected as to whether it is really needed and/or whether a newer version is available. These add-ons are a frequent target for attackers, since any programming errors they contain are often fruitful for smuggling in malicious code such as PHP shells.