The latest version, Joomla 3.4.6, has been released today. This release includes a high priority security patch for Joomla versions 3.x. The exploit affects all Joomla versions, 1.5 to 3.x.
If you are hosted on the CloudAccess.net Platform then you are in good hands. Sites hosted with CloudAccess.net are now protected from this exploit at the platform level.
Even though sites hosted with CloudAccess.net have additional protections in place, it is still recommended that you upgrade your site to the latest version, 3.4.6. If you would like our team to perform a managed update on your Joomla 3.x site, simply put in a ticket and our team will run the update for you.
If you are on Joomla 1.5 or 2.5, then we recommend upgrading to the latest version of Joomla as soon as possible. We understand that not all of our clients are able to upgrade their sites to the latest version 3.4.6. The platform-wide protection that we have added will also help to protect these older versions. Furthermore, it is indicated here that there will be a patch created for Joomla 1.5 and 2.5 sites as well. CloudAccess.net will run this patch automatically for clients that have opted in for managed 1.5 and 2.5 updates.
We would like to thank the Joomla Security Strike Team (JSST). With their help, we were able to implement this platform-wide protection efficiently. Initial scans have not found a single site infected by this exploit on the CloudAccess.net platform