Security

Node Access Rebuild Progressive module faces a security risk with an access bypass vulnerability in versions prior to 2.0.2, prompting immediate updates for Drupal site administrators. ...more

Discover key insights into enhancing Drupal website security with essential modules! Explore how Drupal's robustness and community-driven approach provide a reliable defence against vulnerabilities. ...more

Security alert: CKEditor 4 LTS module for Drupal flagged with a moderately critical Cross Site Scripting vulnerability. ...more

Balint Pekker, a security researcher and Ph.D. candidate at Harvard University, questions the effectiveness of patching software vulnerabilities in his recent blog post. Pekker argues that patches can sometimes create new vulnerabilities and that a more nuanced approach is needed to mitigate security risks. ...more

Discover the robust security features of Drupal CMS and how they protect your digital assets from cyber threats. Learn about the cybersecurity risks organizations face today and the mechanisms available to secure your Drupal website. ...more

A recent security advisory highlights a moderately critical vulnerability in the Migrate Tools module for Drupal, urging users to upgrade to version 6.0.3 to prevent potential Cross Site Request Forgery attacks. ...more

Navigate the cybersecurity landscape with Acquia's guide, ensuring robust Drupal security against potential threats. ...more

Critical security updates were released for Drupal's Entity Delete Log module – users were urged to upgrade to version 1.1.1 to address an access bypass vulnerability and ensure site security. ...more

Drupal Core addresses a moderately critical denial of service vulnerability in the Comment module, urging users to update promptly for enhanced security. ...more

Explore why engaging a Drupal maintenance and support company is essential for safeguarding websites against threats and ensuring peak performance in the ever-evolving digital sphere. ...more

Drupal users, be vigilant: The File Entity module faces a security alert with moderately critical vulnerabilities, including Cross-Site Scripting and Access Bypass, prompting an urgent upgrade to version 7.x-2.38 for enhanced protection. ...more

Drupal 10.2 encounters data integrity issues in List field validation, prompting a rapid response from the core team. ...more