
Joomla 6.1.2 Security & Bugfix Release
On Tuesday, July 7, 2026, the Joomla! Project released Joomla 6.1.2 together with Joomla 5.4.7. These are security and bug fix releases for the Joomla 5.x and 6.x series.
Security fixes in Joomla 6.1.2
- Access control improvements
- Improved security to ensure only authorised users can access media management features.
- Strengthened protection for privacy-related features to prevent unauthorised access.
- Improved security for custom fields to ensure only authorised users can view or modify them.
- Enhanced the security of contact card (vCard) downloads.
- Strengthened access controls for website workflows to prevent unauthorised changes.
- Improved security for module management so only authorised users can make changes.
- Protection against malicious code injection (XSS)
- Enhanced the security of multi-factor authentication settings to better protect user accounts.
- Improved protection for the template manager to prevent malicious content from being injected.
- Strengthened the security of popup windows used throughout the administration area.
- Improved the security of the extension installer to prevent malicious code from being introduced.
- Enhanced the protection of image handling to prevent malicious content from being displayed.
- Improved the security of language customisations to prevent misuse.
Bug fixes in Joomla 6.1.2
- Update installation fix
Fixes a bug that could prevent Joomla or extension updates from completing successfully. Updates are now more reliable. - CSS compatibility improved
Prevents websites from breaking when extensions contain unusual CSS code, improving compatibility with third-party extensions. - Media field improvements
Fixes issues with audio, video and document fields, ensuring they save and display correctly. - TinyMCE editor updated
Updates the built-in editor with bug fixes, language improvements and better compatibility. - Updated PHP libraries
Refreshes Joomla's core software libraries to improve stability, compatibility and long-term security. - Updated JavaScript libraries
Updates frontend libraries for better browser compatibility and improved reliability. - Cleaner Joomla updates
Removes obsolete files during updates, reducing the risk of leftover files causing problems. - Translation updates
Improves translations and fixes wording across many languages in Joomla. - Smaller installation package
Removes unnecessary development files, resulting in a cleaner and slightly smaller Joomla package. - General bug fixes
Includes numerous small fixes and improvements that make Joomla more stable and reliable.
A full list of changes can be found in the 6.1.2 milestone on GitHub.
Upgrading made simple
If your website is already running on Joomla 5.4, moving to Joomla 6.1 is typically a standard upgrade rather than a full migration. In most cases, the process is smooth and efficient, especially since the compatibility plugin helps maintain support for many existing extensions.
Proper preparation remains essential. Before updating your live site, it’s best to test the upgrade in a local or staging environment first. This allows you to verify that your templates, extensions, and custom functionality continue to work correctly, while reducing the risk of unexpected issues or downtime.
Need help updating or migrating to Joomla 6.1.2? Contact us!

Peter is a Joomla specialist en a Linux admin for fast, secure and scalable websites..







