Will they ever get it right? Again there is a new vulnerability targeting Joomla (the CMS formerly known as Mambo) sites. Don’t these guys learn? Mambo/Joomla has a whole track record of vulnerabilities, and the story of the split-up doesn’t sound reassuring too – yet its becoming more and more popular even among professional webmasters! Admittedly, the learning curve is much smoother compared to Typo3 – but for Typo3 we only had one security issue so far and it was dealt with within a day. There’s no such thing as a free lunch – and if you want it easy and shiny, something has to give. In Joomlas case it seems that security is the tradeoff. Go figure.