Today, the new version 1.0.11 of Joomla! was made available for download:
Joomla! 1.0.11 […] is being designated a Critical Security Release. All existing Joomla! users MUST UPGRADE to this version, due to several High Level vulnerabilities that affect ALL Previous versions of Joomla! […] If you are using ANY previous version of Joomla!, you need to upgrade to 1.0.11 as soon as possible.
Just in time, because also today, Secunia found security issue #20 with this software (admittedly in Joomla! 1.0.10):
A vulnerability has been discovered in Joomla!, which can be exploited by malicious users to conduct SQL injection attacks. The vulnerability has been confirmed in version 1.0.10. Other versions may also be affected.
Seems the developers are actually taking security a little less lighthearted. At least the security advisory sounds pretty straightforward.
Via Andreas