Drupal Resources

Drupal Resources

Drupal Security Advisories

Project: Responsive MenusVersion: 7.x-1.x-devDate: 2018-December-05Security risk: Moderately critical 13∕25 AC:Basic/A:Admin/CI:Some/II:Some/E:Theoretical/TD:AllVulnerability: Cross site scriptingDescription: 

This module enables you to collapse your sites main menu on mobile, and show a menu toggle button.

The module doesn't sufficiently sanitize configuration settings provided by users which leads to a Cross Site Scripting (XSS...

Project: Salesforce SuiteDate: 2018-December-05Security risk: Moderately critical 14∕25 AC:None/A:None/CI:Some/II:None/E:Theoretical/TD:DefaultVulnerability: Access bypassDescription: 

This module enables Drupal to synchronize entities with Salesforce records. The module includes a page that does not sufficiently protect access rights, resulting in potential information disclosure.

This vulnerability is mitigated by the fact that only Drupal...

Project: Password PolicyVersion: 7.x-1.x-devDate: 2018-December-05Security risk: Less critical 9∕25 AC:Basic/A:None/CI:None/II:None/E:Theoretical/TD:DefaultVulnerability: Denial of ServiceDescription: 

The Password Policy module makes it possible to set constraints on user passwords which disallow certain passwords.

The "digit placement" constraint is vulnerable to Denial of Service attacks if an attacker submits specially crafted...

Recent Article

This articles features links and information from the Peerless design Security presentation from various Drupal Camps in the Eastern US. Audio from New Jersey's impromptu presentation can be found on the Drupal Camp NJ site for 2014. The PDF version contains all info removed to accommodate time constraints. The entire presentation is available in a white paper available here.

Drupal Weekly Drop

Issue 368 - December, 13th 2018

This will be the final issue of TheWeeklyDrop for 2018. I'll be taking some time off to spend with family. I hope you all have a wonderful month and I'll be back in 2019.

Issue 367 - December, 6th 2018
Issue 366 - November, 29th 2018

I'm back after taking the week off for the Thanksgiving holiday here in the U.S and this issue is packed full of goodness.

Planet Drupal

Simple Website Approach Using a Headless CMS: Part 1 I strongly believe that the path for innovation requires a mix of experimentation, sweat, and failure. Without experimenting with new solutions, new technologies, new tools, we are limiting our ability to improve, arresting our potential to be better, to be faster, and sadly ensuring that we stay rooted in systems, processes and...
This time I'll share some lessons learned on trying to optizime Apache Solr configuration from my n00b perspective.

Drupal has evolved significantly over the course of its long history. When I first built the Drupal project eighteen years ago, it was a message board for my friends that I worked on in my spare time. Today, Drupal runs two percent of all websites on the internet with the support of an open-source community that includes hundreds of thousands of people from all over the world.

Today, Drupal is going through another transition as its capabilities and applicability continue to expand...

What our clients are saying

...a pleasure to work with, combining patience (for my busy schedule and at times overwhelmed brain) with her strong motivation and energy to keep me going
...creative, independent, responsive...
...we just want you to know that we are appreciative!
...dedicated, competent and driven to get the job done and done well.
... they also made suggestions which showed me that they fully understood what I wanted to accomplish.
...continued to monitor it closely and is still always available to help me if I have any questions
A great experience and a much improved website.
...your punctuality, your casual and open personalities, and both your hard copy and online portfolios speak very highly of you and your business as well
" PDI provides us prompt, effective and efficient service in maintaining our Drupal based website."
I had a very tight deadline and budget, and they met it, seemingly with ease.
Thanks so much for everything!
...very responsive to our questions and needs
...provided us with excellent, expert service in a professional and personable manner.
I'm so happy we chose to work with PEERLESS Design.
... incredibly impressed with what you brought to the table
I would highly recommend her for any position requiring IT design and development
...able to translate technical information in an accessible way...
I have seen the first layouts and they are awesome...
I realized that I had picked the right company to work with soon after beginning a project with Peerless Design, Inc.
...can do anything any other designer can do and generally quicker, cheaper and better.
...able to take my abstract ideas and add their expertise to bring them to life in a way that was better than I could have imagined!
...took my less than mediocre site and completely revamped it into a beautiful, professional, and easy-to-navigate site
...I have no doubt we will have the best site in the 2010 election of any PA candidate
I would highly recommend her for any position requiring IT design and development
I love directing our customers to our new site knowing that they are going to be able to find exactly what they are looking for...