The Joomla! Project is pleased to announce the immediate availability of Joomla! 1.6.6. This is a security release and is intended only for those users who are unable to use version 1.7.0. Most users should update to 1.7.0 unless there are specific reasons why they cannot use 1.7.0 at this time. Update instructions for updating from 1.6.5 to 1.6.6 are available here.

The Production Leadership Team's goal is to continue to provide regular, frequent updates to the Joomla community. Learn more about Joomla! development at the Developer Site.

Version 1.6 will reach end of life on 19 August 2011. All users of version 1.6 should update to version 1.7.0 before that time. The update process to version 1.7 is very simple, and complete instructions are available here.

Download

New Installations: Click here to download Joomla 1.6.6 (Full package) »

Update Package: Click here to download Joomla 1.6.6 (Update package) »

Note: You cannot use the Extension Manager -> Update method to update to version 1.6.6. Unpack the upgrade package archive file in your Joomla root folder to replace the existing files with the updated files.

Instructions

• New installation and technical requirements
• Upgrade from an existing Joomla 1.6 version

Want to test drive Joomla? Try the online demo. Documentation is available for beginners.

Please note that you should always backup your site before upgrading.

Release Notes

Check the Joomla 1.6.6 Post-Release FAQs to see if there are important items and helpful hints discovered after the release.

Security Issues Fixed

• Medium Priority - Core - XSS Vulnerabilities. More information »

Statistics for the 1.6.6 release period

• Joomla 1.6.6 contains:
  • no tracker issues fixed in SVN
  • 1 security issue fixed

Joomla! Bug Squad

Thanks to the Joomla Bug Squad for their dedicated efforts investigating reports, fixing problems, and applying patches to Joomla. If you find a bug in Joomla, please report it on the Joomla! CMS Issue Tracker.

Active members of the Joomla Bug Squad during this last release cycle include: A Firoozmandan, Akarawuth Tamrareang, Andrea Tarr, Andrew Eddie, Bill Richardson, Brian Teeman, Christophe Demko, Cristina Solana, Dennis Hermacki, Elin Waring, H. Amonoo, Ian Galpin, Jacob Waisner, Jean-Marie Simonet, Kevin Griffiths, Marijke Stuivenberg, Marius van Rijnsoever, Mark Dexter, Matt Thomas, Michael Babker, Miha Trtnik, Nicholas Dionysopoulos, Nikolai Plath, Ole Bang Ottosen, Peter Chovancak, Roland Dalmulder, Ronald Pijpers, Rouven Weßling, Rune Sjøen, Samuel Moffatt, Tim Plummer, Tom Fuller, Viet Hoang Vu.

Bug Squad Leadership: Andrew Eddie and Mark Dexter Coordinators; Elin Waring, Marijke Stuivenberg, and Omar Ramos, Team Leaders.

Joomla! Security Strike Team

A big thanks to the Joomla! Security Strike Team for their ongoing work to keep Joomla secure. Members include: Airton Torres, Alan Langford, Andrew Eddie, Bill Richardson, Elin Waring, Jason Kendall, Louis Landry, Marijke Stuivenberg, Mark Dexter, Omar Ramos, Rouven Weßling, Samuel Moffatt.