Version 3.0.4 of WordPress, available immediately through the update page in your dashboard or for download here, is a very important update to apply to your sites as soon as possible because it fixes a core security bug in our HTML sanitation library, called KSES. I would rate this release as “critical.”

I realize an update during the holidays is no fun, but this one is worth putting down the eggnog for. In the spirit of the holidays, consider helping your friends as well.

Official article can be found here: http://wordpress.org/news/2010/12/3-0-4-update/

Post from: 040 Hosting Blog. The blog from 040 Hosting, a leading web hosting partner.

Critical WordPress 3.04 update

About CloudLinux, Inc.

Founded in 2009, CloudLinux is a privately funded company that combines unique expertise in the service provider business with in-depth technical knowledge of hosting, kernel development and open source.

CloudLinux provides hosting companies and datacenters with the only commercially supported Linux operating system (OS) optimized for their needs. The new technology behind CloudLinux has been proven to increase density, stability and performance, helping customers realize reduced operating costs and increased profitability.

To join online discussions and receive news updates you can find CloudLinux on: Twitter and LinkedIn. For more information, please visit http://www.cloudlinux.com. For more information on 040Hosting please visit http://www.040hosting.eu

Post from: 040 Hosting Blog. The blog from 040 Hosting, a leading web hosting partner.

Jovian server upgraded to Cloudlinux

Post from: 040 Hosting Blog. The blog from 040 Hosting, a leading web hosting partner.

Joomla 1.5.22 security release.

CloudLinux is quickly making its name in the industry increasing ranking in the last two months and receiving the Editor’s Choice for August 2010 of Web Host Magazine. With its isolation technology and web hosting-centric focus, it comes as no shock that CloudLinux OS was also named Best Start Up Company this year at the Cloud Computing World Series which celebrates the best companies in the IT global industry.

Igor Seletskiy, Founder and CEO states, “We believe the industry is realizing there is more innovation to be done to make web hosting more stable, secure, and efficient. Previously all we could do was react when a sudden resource spike takes down a server. Now we can prevent it from ever happening. We are helping our customers and partners deliver a superior hosting experience that benefits both web hosts and their customers.”

CloudLinux is a privately funded company that combines unique expertise in the service provider market with in-depth technical knowledge of hosting, kernel development, and open source. Providing hosting companies and data centers with the only commercially supported Linux operating system (OS) optimized for their needs, CloudLinux OS is capable of isolating instances on a server and create resource limits at the OS level. Translating to greater efficiency, security, stability, and density its cutting-edge technology lets service providers extract more performance per server, provides flexibility in management and better, faster updates.

040Hosting is an official CloudLinux Distributor and using CloudLinux on its latest servers and upgrading its server park towards Cloudlinux in the coming months.

For more information about CloudLinux, visit www.cloudlinux.com

Post from: 040 Hosting Blog. The blog from 040 Hosting, a leading web hosting partner.

CloudLinux Named Top Ten Best Cloud Computing Provider

* Project: Joomla!
* SubProject: All
* Severity: Medium
* Versions: 1.5.20 and all previous 1.5 releases
* Exploit type: XSS Injection
* Reported Date: 2010-October-05
* Fixed Date: 2010-October-08

Post from: 040 Hosting Blog. The blog from 040 Hosting, a leading web hosting partner.

Joomla! 1.5.21 Released (Security Release)

The Joomla Project announces the immediate availability of Joomla 1.5.20 [senu takaa]. This is a security release that addresses issues with the Joomla 1.5.19 packages. We recommend users upgrade immediately.

Link to joomla site.

Post from: 040 Hosting Blog. The blog from 040 Hosting, a leading web hosting partner.

Easy to miss joomla patch 1.5.20 is here.

More information can be found on the Joomla website.

Post from: 040 Hosting Blog. The blog from 040 Hosting, a leading web hosting partner.

Joomla Security Update 1.5.19 released

Posted: 27 May 2010 05:00 PM PDT

• Project: Joomla!
• SubProject: All
• Severity: High
• Versions: 1.5.17 and all previous 1.5 releases
• Exploit type: XSS Injection
• Reported Date: 2010-May-13
• Fixed Date: 2010-May-28

Description

Back-end user can inject javascript in various administrator screens.

Affected Installs

All 1.5.x installs prior to and including 1.5.17 are affected.

Solution

Upgrade to the latest Joomla! version (1.5.18 or later)

Reported by Riyaz Ahemed

Contact

The JSST at the Joomla! Security Center.

Post from: 040 Hosting Blog. The blog from 040 Hosting, a leading web hosting partner.

Joomla: XSS Injection patch upgrade to 1.5.18 or later

The Development Working Group’s goal is to continue to provide regular, frequent updates to the Joomla community.

Post from: 040 Hosting Blog. The blog from 040 Hosting, a leading web hosting partner.

Joomla 1.5.17 released

• [20100423] – Core – Negative Values for Limit and Offset
• [20100423] – Core – Installer Migration Script
• [20100423] – Core – Sessation Fixationy
• [20100423] – Core – Password Reset Token

Make sure you install these updates as soon as possible to keep your installation as up to date as possible.

If you are one of our SAAS users you have already been updated and do no to take any action on the report.

Post from: 040 Hosting Blog. The blog from 040 Hosting, a leading web hosting partner.

Joomla 1.5.16 security update released