Joomla 3.8.13 is available and it’s a security release. Since a few security issues and bugs have been resolved, we’re considering this a security fix and we recommend all Joomla website owners have this upgrade done.
Joomla 3.8.13 is a security release for the 3.x series of Joomla which addresses 5 security vulnerabilities.
Joomla! 3.8.13 Release (joomla.org)
What's in Joomla! 3.8.13?
Joomla 3.8.13 includes 5 security vulnerability fixes:
Low Priority - Core - Hardening com_contact contact form (affecting Joomla 2.5.0 through 3.8.12)
Low Priority - Core - Inadequate default access level for com_joomlaupdate (affecting Joomla 2.5.4 through 3.8.12)
Low Priority - Core - Access level Violation in com_tags (affecting Joomla 3.1.0 through 3.8.12)
Low Priority - Core - ACL Violation in com_users for the admin verification (affecting Joomla 1.5.0 through 3.8.12)
Low Priority - Core - CSRF hardening in com_installer (affecting Joomla 2.5.0 through 3.8.12)
Why a 3.8.13 release?
Joomla 3.9, The Privacy Tool Suite by Joomla, is coming soon.
In order to give time to our users to upgrade from 3.8.x to 3.9.0 so that they can test their 3rd party extensions, we decided to fix these security vulnerabilities in a dedicated release before 3.9.0.
Our Website Maintenance Department will be in contact with our clients regarding this upgrade. If you need this upgrade done on your website, please contact us.