Menu

CMS News

Celebrate the WordPress 15th Anniversary on May 27

April 20th, 2018

May 27, 2018 is the 15th anniversary of the first WordPress release — and we can’t wait to celebrate! Party time! Join WordPress fans all over the world in celebrating the 15th Anniversary of WordPress by throwing your own party! Here’s how you can join in the fun: Check the WordPress 15th Anniversary website to see…

Drupal core – Moderately critical – Cross Site Scripting – SA-CORE-2018-003

April 18th, 2018

CKEditor, a third-party JavaScript library included in Drupal core, has fixed a cross-site scripting (XSS) vulnerability. The vulnerability stemmed from the fact that it was possible to execute XSS inside CKEditor when using the image2 plugin (which Drupal 8 core also uses). We would like to thank the CKEditor team for patching the vulnerability and…

GDPR Compliance Tools in WordPress

April 12th, 2018

GDPR compliance is an important consideration for all WordPress websites. The GDPR Compliance team is looking for help to test the privacy tools that are currently being developed in the core. What is GDPR? GDPR stands for General Data Protection Regulation and is intended to strengthen and unify data protection for all individuals within the…

Imperial War Museums

April 12th, 2018

Completed Drupal site or project URL: https://www.iwm.org.uk/ Deeson designed and built a powerful digital platform to harness Imperial War Museums’ collection and drive deeper engagement with their events. The brief. Deeson was asked to support Imperial War Museums (IWM) in evaluating the effectiveness of their existing digital presence in helping them meet their strategic goals….

WordPress 4.9.5 Security and Maintenance Release

April 3rd, 2018

WordPress 4.9.5 is now available. This is a security and maintenance release for all versions since WordPress 3.7. We strongly encourage you to update your sites immediately. WordPress versions 4.9.4 and earlier are affected by three security issues. As part of the core team's ongoing commitment to security hardening, the following fixes have been implemented…

Implementation Guide on Headless and Decoupled CMS

April 2nd, 2018

The rapid evolution of diverse end-user clients and applications has given rise to a dizzying array of digital channels to support. Websites in the past were built from monolithic architectures utilizing web content management solutions that deliver content through a templating solution tightly “coupled” with the content management system on the back-end. Agile organizations crave…

The Month in WordPress: March 2018

April 2nd, 2018

With a significant new milestone and some great improvements to WordPress as a platform, this month has been an important one for the project. Read on to find out more about what happened during the month of March. WordPress Now Powers 30% of the Internet Over the last 15 years, the popularity and usage of…

Drupal core – Highly critical – Remote Code Execution – SA-CORE-2018-002

March 28th, 2018

CVE: CVE-2018-7600 A remote code execution vulnerability exists within multiple subsystems of Drupal 7.x and 8.x. This potentially allows attackers to exploit multiple attack vectors on a Drupal site, which could result in the site being completely compromised. The security team has written an FAQ about this issue. Solution: Upgrade to the most recent version…

Thunder, the Drupal 8 Distribution for Professional Publishing

March 28th, 2018

https://thunder.org/
Thunder is …

Drupal 7 and 8 core highly critical release on March 28th, 2018 PSA-2018-001

March 21st, 2018

Advisory ID: DRUPAL-PSA-2018-001 Project: Drupal Core Version: 7.x, 8.x Date: 2018-March-21 Description There will be a security release of Drupal 7.x, 8.3.x, 8.4.x, and 8.5.x on March 28th 2018 between 18:00 – 19:30 UTC, one week from the publication of this document, that will fix a highly critical security vulnerability. The Drupal Security Team urges…