back to article No RESTful the wicked: If your website runs Drupal, you need to check for security updates – unless you enjoy being hacked

Website admins are today urged to update their Drupal installations following the disclosure of a potentially serious vulnerability in the web publishing software. And when we say potentially serious, we mean, someone can potentially hack and hijack your site via this flaw. The security hole, designated CVE-2019-6340, is a …

  1. Winkypop Silver badge


    "Drupal" one of the Banana Splits?

    See icon

  2. Kevin McMurtrie Silver badge

    If your website runs PHP, you need to check for security updates

    When is this not true? PHP is a magnet for coders who don't keep internal commands and user data separate. "Don't worry, I sanitized the input," they say.

  3. DCFusor

    a fractal...

    Personal Home Page is a language designed from the start for utter beginners, and then "just grew". It hasn't been maintained with discipline, which would have caused some (well deserved IMO) loss of backward compatibility.

    Utter beginners write crappy code even in good languages - the designer can't think of everything - nothing is fool proof. There is no "one weird trick" that prevents all classes of bugs.

    And php in particular is still a fractal of bad design.

    epic rant, oldie but goodie

  4. JHGibson

    Let's hear it for vi!

    Let's! :)

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021