• News
  • JCE Pro 2.9.52 released

JCE Pro 2.9.52 released!

This update fixes a few bugs and issues reported or discovered since the last release, adds "Phase 1" of Dark Mode support to the JCE Admin, and a fix for a mutation cross-site scripting (mXSS) vulnerability via our friends at Tinymce.

Tinymce mXSS Vulnerability Fix

Our friends at Tiny recently released an update to the TinyMCE editor that included a fix for a mutation cross-site scripting (mXSS) vulnerability. Although JCE uses a forked and modified version of Tinymce, this vulnerability appears to be present in previous versions of JCE, so a fix is included in this update. You can read more about it in the TinyMCE release notes.

As always with exploit attempts executed through content input, it is important to always restrict access where possible to trusted users and limit features where necessary.

Dark Mode - Phase 1

Joomla 5 was released with support for Dark Mode in the Admin template and this update adds Dark Mode support to the JCE Admin, excluding the JCE File Browser. Phase 2, which will hopefully be included in the next update, will include full Dark Mode support for the JCE Editor.

Dark Mode in the JCE Admin
Dark Mode in the JCE Admin

Other changes and fixes include

  • PRO Columns parameters set in Editor Profiles would not be applied.
  • PRO Adding a custom value to the Classes list in the Columns dialog would not correctly apply it and reset the filtered list.
  • PRO Internal Columns classes were incorrectly added to the Styles list.
  • Removed the middot character from non-breaking space Visual Characters representation to avoid selection confusion and improve backspace delete responsiveness.
  • Editor would fail to load if the Joomla core.js script file was loaded after the JCE Editor scripts.
  • Installed plugins, eg: ChatGPT would give an Invalid Plugin error when opening or sending requests.
  • Creating a list on a multi-line selection would wrap all content in the list when Container & Enter Key was set to None:Linebreak.
  • Fixed deprecated "Joomla.editors" script errors in Joomla 5. 
  • Some editor-xtd buttons eg: Regularlabs ContentTemplater, would not operate correctly when the Joomla button was added to the editor toolbar.
  • Fixed a PHP "ListField" error when saving an Editor Profile in Joomla 3.

A changelog for this release is available to view here

Thank you to everyone who submitted bug reports and tested development versions. If you find any more issues please submit them on the forum or on github.

Download and Installation

JCE Pro is available for download with a JCE Pro Subscription.
If you already have a subscription, please make sure you set your key before updating

Instructions for installing and updating JCE for each Joomla version are available here