Only a week back, the Joomla JSST team released v1.5.13 Security Update that covered two security issues, Joomla had today released another security update that solves mailto component issue. This severity of this security issue is low, though.

Joomla states that, in the mailto component (com_mailto), it was possible to bypass timeout protection. The bug was reported on the 28th of this month and the same was solved yesterday. All prior versions are vulnerable.

Downloading the latest v1.5.14 will solve this low severity issue. To upgrade your package, click the download link below. Unpack the archive and upload them to the root folder of your Joomla Core.

1.5.13 to 1.5.14 Upgrade Package | 38.91KB | ZIP – Download

If you have used Auto-Installers like Fantastico, Installatron or Softaculous to install your Joomla Core, you’ll to have to wait until the upgrade is made available to you. If you prefer not to upgrade using your Auto-Installer, you can manually upgrade by downloading the upgrade patch.