Drupal Resources

Drupal Resources

Drupal Security Advisories

Project: JSON APIVersion: 8.x-1.15Date: 2018-April-25Security risk: Moderately critical 11∕25 AC:Basic/A:Admin/CI:Some/II:Some/E:Theoretical/TD:UncommonVulnerability: Cross Site Request ForgeryDescription: 

This module provides a JSON API standards-compliant API for accessing and manipulating Drupal content and configuration entities.

The module doesn't provide CSRF protection when processing authenticated traffic using cookie-based...

Project: DRD AgentDate: 2018-April-25Security risk: Critical 15∕25 AC:None/A:None/CI:None/II:Some/E:Theoretical/TD:AllVulnerability: PHP object injectionDescription: 

This module enables you to monitor and manage any number of remote Drupal sites and aggregate useful information for administrators in a central dashboard.

The modules (DRD and DRD Agent) encrypt the data which is exchanged between them but in order to do so, they use the PHP serialize/...

Project: MediaVersion: 7.x-2.18Date: 2018-April-25Security risk: Critical 18∕25 AC:Basic/A:User/CI:All/II:All/E:Theoretical/TD:AllVulnerability: Remote Code ExecutionDescription: 

The Media module provides an extensible framework for managing files and multimedia assets, regardless of whether they are hosted on your own site or a third party site.

The module contained a vulnerability similar to...

Recent Article

This articles features links and information from the Peerless design Security presentation from various Drupal Camps in the Eastern US. Audio from New Jersey's impromptu presentation can be found on the Drupal Camp NJ site for 2014. The PDF version contains all info removed to accommodate time constraints. The entire presentation is available in a white paper available here.

Drupal Weekly Drop

Issue 336 - April, 26th 2018
Issue 335 - April, 19th 2018
Issue 334 - April, 12th 2018

Writing this from DrupalCon Nashville. Look out for DrupalCon highlights in next week's issue.

Planet Drupal

How to update Drupal 8 core?

Let's see how to update your Drupal site between 8.x.x minor and patch versions. For example, from 8.1.2 to 8.1.3, or from 8.3.5 to 8.4.0. I hope this will help you.

  • If you are upgrading to Drupal version x.y.z

           x -> is known as the major version number

           y -> is known as the minor version number

           z -> is known as the patch version number.

...
Drupalcon mentored core sprint - part 2 - your experience as a sprinter 12.05.2018 Michael Lenahan Body:  Drupalcon mentored core sprint - part 2 - your experience as a sprinter

Hello! You've arrived at part 2 of a series of 3 blog posts about the Mentored Core Sprint, which traditionally takes place every Friday at Drupalcon.

If you haven't already, please go back and read part 1.

You may think sprinting is not for you ...

So, you may be the kind of...

Simple Website Approach Using a Headless CMS: Part 1 I strongly believe that the path for innovation requires a mix of experimentation, sweat, and failure. Without experimenting with new solutions, new technologies, new tools, we are limiting our ability to improve, arresting our potential to be better, to be faster, and sadly ensuring that we stay rooted in systems, processes and...

What our clients are saying

... incredibly impressed with what you brought to the table
...dedicated, competent and driven to get the job done and done well.
I had a very tight deadline and budget, and they met it, seemingly with ease.
I realized that I had picked the right company to work with soon after beginning a project with Peerless Design, Inc.
...your punctuality, your casual and open personalities, and both your hard copy and online portfolios speak very highly of you and your business as well
...creative, independent, responsive...
...I have no doubt we will have the best site in the 2010 election of any PA candidate
I would highly recommend her for any position requiring IT design and development
I would highly recommend her for any position requiring IT design and development
A great experience and a much improved website.
...provided us with excellent, expert service in a professional and personable manner.
...can do anything any other designer can do and generally quicker, cheaper and better.
...we just want you to know that we are appreciative!
...a pleasure to work with, combining patience (for my busy schedule and at times overwhelmed brain) with her strong motivation and energy to keep me going
...very responsive to our questions and needs
" PDI provides us prompt, effective and efficient service in maintaining our Drupal based website."
...continued to monitor it closely and is still always available to help me if I have any questions
...able to take my abstract ideas and add their expertise to bring them to life in a way that was better than I could have imagined!
I have seen the first layouts and they are awesome...
... they also made suggestions which showed me that they fully understood what I wanted to accomplish.
Thanks so much for everything!
I love directing our customers to our new site knowing that they are going to be able to find exactly what they are looking for...
...able to translate technical information in an accessible way...
I'm so happy we chose to work with PEERLESS Design.
...took my less than mediocre site and completely revamped it into a beautiful, professional, and easy-to-navigate site