The Joomla! Project and the Production Leadership Team are proud to announce the release of Joomla! 3.4.2. This is a security release for the 3.x series of Joomla! This release fixes two low level security issues.
What's in 3.4.2?
The 3.4 release introduces new features into the CMS such as improved front end module editing, decoupling of weblinks, composer integration, Google new reCaptcha and security improvements by implementing UploadShield code which can detect most malicious uploads by examining their filenames and file contents.
UPDATE: the Install from Web Service is back online.
Thanks to the hard work of over 460 different volunteer contributors, over 260 bugs have also been resolved with the 3.4 release of the Joomla! CMS. See the list of fixed GitHub issues for details of the tracker items fixed.
For known issues with the 3.4.2 release, see the Version 3.4.2 FAQ in the documentation site.
The Production Leadership Team's goal is to continue to provide regular, frequent updates to the Joomla community. Learn more about Joomla! development at the Joomla! Developer Network.
New Installations: Download Joomla! 3.4.2 (Full package) »
Update Package: Download Joomla! 3.4.2 (Update package) »
Note: Please read the update instructions before updating.
Please remember to clear your browser's cache after upgrading.
How can you help Joomla! development?
There are a variety of ways in which you can get actively involved with Joomla! It doesn't matter if you are a coder, an integrator, or merely a user of Joomla!. You can contact the Joomla! Community Development Manager,
The Joomla! Bug Squad is one of the most active teams in the Joomla! development process and is always looking for people (not just developers) that can help with sorting bug reports, coding patches and testing solutions. It’s a great way for increasing your working knowledge of Joomla!, and also a great way to meet new people from all around the world.
If you are interested, please read about us on the Joomla! Documentation Wiki and, if you wish to join, email
You can also help Joomla! development by thanking those involved in the many areas of the process. In the past year, for example, over 1,000 bugs have been fixed by the Bug Squad.
The project also wants to thank all of the contributors who have taken the time to prepare and submit work to be included in the Joomla! CMS and Framework.
A Huge Thank You to Our Volunteers!
Thank you to the code contributors and active Bug Squad members that created and tested this release: Aasim Ali, Abhishek Das, acyba, Alex, Alonzo Turner, Andy Gaskell, Arkadiy, Artur Stępień, Arunas Mazeika, Ashan Fernando, b92, bassmanpaul, bembelimen, Bernard Saulme, Bradley Weston, Brian Teeman, Bruno Batista, Buddhima, Charles Lodder, chillcreations, Chris Davenport, Christelle, clubnite, Constantin Romankiewicz, Craig Phillips, Cyril Rezé, dandpclements, Daniele Rosario, David Beuving, David Jardin, Davide, demis-palma, Denitz, Dimitris Grammatiko, Dmitry Rekun, Drew Garrett, echatpotte, Elijah Madden, Eric Fernance, Evgenij Kumanin, Fedik, garima-agal, George Wilson, Gunjan Patel, Hannes Papenberg, Hans Kuijpers, Herman Peeren, Hilary Cheyne, Hoffi1, Humorlos, illovo, Jan Prokes, Javier Gomez, Jaz, Jean-Luc Subri, Jean-Marie Simonet, Jelle Kok, Jerome, jo-sf, jowi, Julien Brouns, Kevin Griffiths, kochinc, Konstantin, kshitij sharma, Lars Grefer, Leo Lammerink, Manoj L, Marc-Antoine, Marco Dings, Marko D, Matias Griese, Matt Thomas, maxvalentini77, Michael Babker, Mihail Irintchev, modernmagic, Nadeeshaan Gunasinghe, nibra, Nicholas Dionysopoulos, Nick Savov, Nicola Galgano, Patrick Morris, Paul Holmes, Peter Lose, Peter Martin, Peter van Westen, Phil Taylor, Piotr Konieczny, Piotr Moćko, Prasoon Shukla, Puneet Kala, pwork02, rakesh, Reinhard Hiebl, Richard Fath, Robert Deutz, Roberto Segura, Roland Dalmulder, Ruth Cheesley, Ryan Boog, Samuel Mehrbrodt, Sander Potjer, Sarah Watz, Saurabh Shah, sebek, Sergio Manzi, Seth Warburton, shur, Simon Asika, Sophist, sovainfo, Søren Beck Jensen, Thomas Hunziker, thongredweb, Tim, Tino Brackebusch, Tito Alvarez, Tobias Zulauf, Tran Duy Hung, Troy T. Hall, Tuan Pham Ngoc, Valentin Despa, Victor Drover, Victor Escobar, Viktor Vogel, Vo Hoang Dang Khoa, vzenix, waader, waveywhite, Wolfgang Naber.
Joomla! Bug Squad
Thank you to the Joomla! Bug Squad for their dedicated efforts investigating reports, fixing problems, and applying patches to Joomla. If you find a bug in Joomla!, please report it on the Joomla! Issue Tracker.
Active members of the Joomla! Bug Squad during past 3 months include: Achal Aggarwal, Adam Przybylski, Alexandru Pruteanu, Andrea Zagli, Andrew Nester, Anibal Sanchez, Ben Charlton, Ben Griffin, Benjamin Trenkle, Brad Markle, Brian Teeman, Chris Davenport, Christiane Maier-Stadtherr, Constantin Romankiewicz, Cyril Rezé, Dan Walker, Daniel Dimitrov, David Jardin, Demis Palma, Denise McLaurin, Dennis Hermacki, Dimitris Grammatikos, Edwin Cheront, Elijah Madden, Fedik Zinchuk, Gary Mort, George Wilson, Hannes Papenberg, Hugo Avila, Itamar Elharar, Jean-Marie Simonet, Jurian Even, Kevin Griffiths, Lara Petersen, Marc Antoine Thevenet, Marco Richter, Marko Đedović, Matias Aguirre, Matt Thomas, Michael Babker, Mohamed Infaz, Nikolai Plath, Peter Lose, Peter Martin, Peter van Westen, Peter Wiseman, Piotr Mocko, Robert Deutz, Robert Gastaud, Roberto Segura, Roland Dalmulder, Sander Potjer, Stefania Gaianigo, Thomas Hunziker, Tino Brackebusch, Tobias Zulauf, Todor Iliev, Toivo Talikka, Valentin Despa, Viktor Vogel.
Bug Squad Leadership: Roland Dalmulder, Coordinator and Tobias Zulauf, Co-coordinator.
Joomla! Security Strike Team
A big thanks to the Joomla! Security Strike Team for their ongoing work to keep Joomla! secure. Members include: Alan Langford, Beat B., David Jardin, George Wilson, Jean-Marie Simonet, Marco Dings, Mark Boos, Matias Griese, Michael Babker, Nicholas Dionysopoulos, Thomas Hunziker, Viktor Vogel
Security Team Leadership: Viktor Vogel, Coordinator
Image Credit: Chiara Aliotta and Helvecio Da Silva