Joomla 3.8 brings more than 300 improvements to the popular content management system (CMS) and patches two vulnerabilities, including one that can be exploited to obtain administrator credentials.
Article Link: http://feedproxy.google.com/~r/Securityweek/~3/QlsgKEJ7ruc/joomla-login-page-flaw-exposes-admin-credentials