Drupal 6 and 7 get critical security patches

Drupal has released new updates for its series 6 and 7; update versions are namely 6.37 and 7.39. The open source CMS has received security patches in which several critical vulnerabilities affecting Drupal versions 6 and 7 have been addressed.

Latest Update in Drupal

There were three vulnerabilities prior to 6.37 and 7.39. These are cross-site scripting bug in the auto-complete system, a cross-site request forgery bug in Form API, and an information disclosure flaw in Access system.

Why this update came?

With cross-site forgery vulnerability in Form API, malicious user can upload files to another user’s account. Other vulnerability is in the cross-site scripting in the Ajax system. The third risk is the flaw in access system that enables malicious users having elevated permission injecting malicious code in SQL comments.

Cross-site Request forgery

Most of the Indian companies are developing nice web apps based on Drupal like Social Network sites, e-commerce sites, and several other kinds of web development is going on in Drupal. You can also hire dedicated resources for Drupal based web development from India.

Indian Companies in Drupal Development

Website : www.rapidsofttechnologies.com

E-mail Id : sales@rapidsofttechnologies.com

Phone: +91 124 485 2849 (India) +1 516 515 9506(USA)

Think about Drupal,Think about us.

Connect with us:

Thank You