Security Announcement for Joomla 1.5.0

The core developers of Joomla! have just released a statement about a security exploit in Joomla 1.5.0

After releasing Joomla! 1.5 stable we have discovered a high priority security issue.

The vulnerability has been discovered in XML-RPC in combination with the blogger API.

There is a security problem in this code that makes it possible to alter the articles

on your site (including removal). This problems has been fixed currently by members

of the development team and the Joomla! bug squad, solution is now available from

Subversion. So what do you need to do until we release Joomla! 1.5.1?
All Joomla! users who have enabled the XML-RPC Blogger API plugin should disable it!

If you have never enabled this plugin you do not need to do anything.

This comes hot on the tail of an xml-rpc issue in wordpress also !