Drupal

The Long Road to Drupal 9

When Drupal 9 is released, it will be the first major release since sematic versioning and six-month minor release cycles were adopted. When exactly Drupal 9 might get released has only been lightly discussed so far, and while it will likely still be some way off, the earlier we talk properly about it, the better prepared everyone will be when it happens.

 

Tags

Drupal patches vulnerability in Symfony library

Drupal issued an update to patch a vulnerability in its Symfony library that if exploited would give an attacker to gain access to higher level caches and web servers.

The issue, CVE-2018-14773, effects many Symfony versions, 2.7.0 to 2.7.48, 2.8.0 to 2.8.43, 3.3.0 to 3.3.17, 3.4.0 to 3.4.13, 4.0.0 to 4.0.13 and 4.1.0 to 4.1.2 versions of the Symfony HttpFoundation component. This issue is resolved by updating to 2.7.49, 2.8.44, 3.3.18, 3.4.14, 4.0.14, and 4.1.3.

That Drupal bug you were told to patch weeks ago? Cryptominers hope you haven't bothered

A set of high-severity vulnerabilities in Drupal that were disclosed last month are now the target of widespread attacks by a malware campaign.

Researcher Troy Mursch of Bad Packets Report has spotted hundreds of compromised Drupal sites being used to host "cryptojacking" malware that uses the CPUs of visitors to mine cryptocurrency via CoinHive.

Patch Drupal now: Yet another critical website bug found – a sequel to 'Drupalgeddon2'

Patch Drupal now: Yet another critical website bug found – a sequel to 'Drupalgeddon2'

After scrambling to patch a critical vulnerability late last month, Drupal is at it again.

The open source content management project has issued an unscheduled security update to augment its previous patch for Drupalgeddon2.

There was also a cross-site scripting bug advisory in mid-April.

 

Hackers Don't Give Site Owners Time to Patch, Start Exploiting New Drupal Flaw Within Hours

Hackers Don't Give Site Owners Time to Patch, Start Exploiting New Drupal Flaw Within Hours

 

Five hours after the Drupal team published a security update for the Drupal CMS, hackers have found a way to weaponize the patched vulnerability, and are actively exploiting it in the wild.

This vulnerability should not be confused with Drupalgeddon 2 (CVE-2018-7600), another Drupal CMS security issue patched last month, which is also heavily exploited. This issue —tracked as CVE-2018-7602— was patched today.

10 reasons why Drupal + Drupal Commerce is the best solution for an integrated ecommerce platform

10 reasons why Drupal + Drupal Commerce is the best solution for an integrated ecommerce platform

Drupal Commerce is built from the ground up to integrate with Drupal, which makes it hard to beat when comparing it with dedicated ecommerce platforms such as Magento or Prestashop.

Why? Because changes to Google's algorithms over the past 18 months (Panda, Penguin and Hummingbird) have placed Content Marketing front and centre of your online marketing strategy. This means that any serious ecommerce solution must incorporate a robust content management system if it is to provide a platform for ongoing success.

WHAT IS DRUPAL AND WHY DRUPAL IS THE RIGHT CHOICE?

WHAT IS DRUPAL AND WHY DRUPAL IS THE RIGHT CHOICE?

What is the name?

Many of you could have been like me. I’m been a Drupal user for a long time, but not only recently did I do a research to find out what the story behind it was.

Drupal has its name from the Dutch language but it was founded in Belgium. It was originally written by Dries Buytaert as a message board so that Dries and his group of friends could stay in touch, shared interesting findings, and talked about their personal lives.