This release only contains the security fix; no other changes have been made compared to the Joomla! 4.2.7 release.
After the release, we strongly advise you to renew the passwords for all credentials that are stored in the global site configuration, namely:
- database
- SMTP
- Redis
- HTTP proxy
Security issues fixed with 4.2.8
- [20230201] - Core - Improper access check in webservice endpoints
More Information
Download
Full announcement + download links: https://www.joomla.org/announcements/re ... lease.html
Discussion Forum: viewtopic.php?f=9&t=999839