Menu

CMS News

Drupal core – Moderately critical – Cross Site Scripting – SA-CORE-2018-003

April 18th, 2018

CKEditor, a third-party JavaScript library included in Drupal core, has fixed a cross-site scripting (XSS) vulnerability. The vulnerability stemmed from the fact that it was possible to execute XSS inside CKEditor when using the image2 plugin (which Drupal 8 core also uses).We would like to thank the CKEditor team for patching the vulnerability and coordinating…

GDPR Compliance Tools in WordPress

April 12th, 2018

GDPR compliance is an important consideration for all WordPress websites. The GDPR Compliance team is looking for help to test the privacy tools that are currently being developed in the core. What is GDPR?GDPR stands for General Data Protection Regulation and is intended to strengthen and unify data protection for all individuals within the European…

WordPress 4.9.5 Security and Maintenance Release

April 3rd, 2018

WordPress 4.9.5 is now available. This is a security and maintenance release for all versions since WordPress 3.7. We strongly encourage you to update your sites immediately.WordPress versions 4.9.4 and earlier are affected by three security issues. As part of the core team's ongoing commitment to security hardening, the following fixes have been implemented in…

Implementation Guide on Headless and Decoupled CMS

April 2nd, 2018

The rapid evolution of diverse end-user clients and applications has given rise to a dizzying array of digital channels to support.Websites in the past were built from monolithic architectures utilizing web content management solutions that deliver content through a templating solution tightly “coupled” with the content management system on the back-end.Agile organizations crave flexibility, and…

The Month in WordPress: March 2018

April 2nd, 2018

With a significant new milestone and some great improvements to WordPress as a platform, this month has been an important one for the project. Read on to find out more about what happened during the month of March.WordPress Now Powers 30% of the InternetOver the last 15 years, the popularity and usage of WordPress have…

Drupal core – Highly critical – Remote Code Execution – SA-CORE-2018-002

March 28th, 2018

CVE: CVE-2018-7600 A remote code execution vulnerability exists within multiple subsystems of Drupal 7.x and 8.x. This potentially allows attackers to exploit multiple attack vectors on a Drupal site, which could result in the site being completely compromised. The security team has written an FAQ about this issue. Solution:Upgrade to the most recent version of…

Thunder, the Drupal 8 Distribution for Professional Publishing

March 28th, 2018

https://thunder.org/
Thunder is …

Drupal 7 and 8 core highly critical release on March 28th, 2018 PSA-2018-001

March 21st, 2018

Advisory ID: DRUPAL-PSA-2018-001Project: Drupal CoreVersion: 7.x, 8.xDate: 2018-March-21DescriptionThere will be a security release of Drupal 7.x, 8.3.x, 8.4.x, and 8.5.x on March 28th 2018 between 18:00 – 19:30 UTC, one week from the publication of this document, that will fix a highly critical security vulnerability. The Drupal Security Team urges you to reserve time for…

Drupal 8.5.0 is now available

March 7th, 2018

What’s new in Drupal 8.5.0?This new version makes Media module available for all, improves migrations significantly, stabilizes the Content Moderation and Settings Tray modules, serves dynamic pages faster with BigPipe enabled by default, and introduces a new experimental entity layout user interface. The release includes several very important fixes for workflows of content translations and…

Big steps for migrations in Drupal 8.5.0

March 7th, 2018

After over four years of work with over 570 contributors and 1300+ closed issues, Drupal 8.5.0 releases the Migrate system’s architecture as fully stable. This means that developers can write migration paths without worrying for stability of the underlying system.On top of that the Migrate Drupal and Migrate Drupal UI modules (providing Drupal 6 and…

Page 1 of 75512345...Last »