The websites based on the popular Joomla CMS need to be updated as soon as possible due to a critical remote code execution vulnerability. The critical flaw was already exploited in the wild, during the weekend experts at the Sucuri firm observed an alarming increase in the number of attacks. Starting from Saturday hundreds of attacks are now taking place. The zero-day flaw could have a significant impact on the Internet users considering that Joela is the most popular content management system having been downloaded more than 50 million times.”]
Source: http://securityaffairs.co/wordpress/42843/cyber-crime/joomla-zero-day.html