Version 3.8 of Joomla, the worlds second-most popular website content management system (CMS), is out. The update includes fixes for two security issues including a very serious flaw in the LDAP authentication plugin. The LDAP injection vulnerability allows an attacker to extract all authentication credentials in 20 seconds including the administrator credentials. With an administrator password an attacker could gain administrative access within a matter of seconds. The second bug fixed in the update is a bug that could allow an attacker access an article’s introductory text even if that article is archived.”]