Version 2.5.0 of the Joomla! open source content management system was recently released.
"The update ... addresses two medium priority cross-site scripting (XSS) vulnerabilities and two low priority information disclosure holes," The H Security reports.
"The developers remind users that the 1.7.x branch will reach its end of life on 24 February 2012," the article states. "All users are advised to upgrade to the current release; upgrade instructions are provided."
Go to "Joomla! 2.5 adds new features, closes holes" to read the details.
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.