GitHub - 1xINTERNET/drupal-security-update-scripts: Drupal security update scrip

Drupal security update scripts. Contribute to 1xINTERNET/drupal-security-update-scripts development by creating an account on GitHub.

Security public service announcements | Drupal.org

3rd Party Libraries and Supply Chains - PSA-2024-06-26 ; Drupal 9 is end of life - PSA-2023-11-01 ; Last chance to adopt Drupal 7 contributed projects before they might be marked unsupported - PSA-2023-07-19 ; Announcement: Drupal core issues with some risk levels may be treated as bugs in the public issue queue, not as private security issues - PSA-2023-07-12

Provide a way to only run security updates (Drupal) · Issue #29 · kanopi/cms-upd

What would you like to be added It would be great if both for Drupal 7 and Drupal composer there was a workflow/pipeline that could be manually triggered, that runs security updates only. Why is th...

Drupal core - Highly critical - Remote Code Execution - SA-CORE-2018-002 | Drupal.org

Project: Drupal core · Date: 2018-March-28 · Vulnerability: Remote Code Execution · Affected versions: >=7.0 <7.58 || >= 8.0.0 <8.3.9 || >=8.4.0 <8.4.6 || >=8.5.0 <8.5.1 · CVE IDs: CVE-2018-7600

Drupal core - Critical - Cross-site scripting - SA-CORE-2021-002 | Drupal.org

Install the latest version: ; If you are using Drupal 9.1, update to Drupal 9.1.7. ; If you are using Drupal 9.0, update to Drupal 9.0.12. ; If you are using Drupal 8.9, update to Drupal 8.9.14. ; If you are using Drupal 7, update to Drupal 7.80.

Drupal core - Moderately critical - Access bypass - SA-CORE-2023-005 | Drupal.org

Install the latest version: ; If you are using Drupal 10.0, update to Drupal 10.0.8. ; If you are using Drupal 9.5, update to Drupal 9.5.8. ; If you are using Drupal 9.4, update to Drupal 9.4.14.

SA-CORE-2014-005 - Drupal core - SQL injection | Drupal.org

Advisory ID: DRUPAL-SA-CORE-2014-005 Project: Drupal core Version: 7.x Date: 2014-Oct-15 Security risk: 25/25 ( Highly Critical) AC:None/A:None/CI:All/II:All/E:Exploit/TD:All Vulnerability: SQL Inj...

Drupal Steward | Drupal Security Team guide on Drupal.org

Reduce risk and save ; Drupal Steward : Update on your time With Drupal Steward, you are protected from highly-critical vulnerabilities, and can update your Drupal sites on your own time, aligning with your existing change management and update schedules. Drupal Steward is an affordable solution, scaling based on traffic. A site with 1 million http requests per month will pay less than $20/mo, and a site with over 10 million monthly requests will still pay less than $100/mo. On-call security upd...

Install just the security updates via composer · Issue #3853 · hechoendrupal/dru

Feature Request: Keep Drupal secure with a cron job! [ module:update ] Add a switch to only install security updates. Problem/Motivation Updating Drupal is too much manual work. Solution I would li...

Drupal core should inform the user of the security coverage for the site's installed minor version includ....

Problem/Motivation Currently, Drupal.org and various communication channels inform site owners of when the next important (and possibly more difficult) minor version update is scheduled, but this i...