Skip to main content

Patch/Update Drupal or Be Hacked by Highly Critical SQL Injection in Database Abstraction API

By

Drupal SQL Injection - Drupal Warns of Getting Hacked Unless Patched

Millions of Drupal 7 websites might have hit by hack attack


Drupal issued an advisory on Oct 15, 2014 about vulnerability of SQL Injection in its Drupal core 7.x versions prior to 7.32.

Drupal issued its SA-CORE-2014-005 advisory, warning of a highly critical SQL injection vulnerability that is also identified as CVE-2014-3704.

The only solution is to install the latest version i.e. Drupal core 7.32.

With the issue of advisory on 15 Oct by Drupal, multiple exploits have been reported. For this they issued follow-up announcement DRUPAL-PSA-2014-003

Drupal issued very strong words in the advisory PSA-2014-003. This shows how serious the vulnerability is. Here is what they penned down:
"You should proceed under the assumption that every Drupal 7 website was compromised unless updated or patched before Oct 15th, 11pm UTC, that is 7 hours after the announcement."
There are chances that you may not be able to update to the latest Drupal version. For those users Drupal has issued a patch for Drupal's database.inc file to fix the vulnerability. Drupal also provided a help document to recover your hacked website. Take a look at their help documentation, "Your Drupal site got hacked, now what"
Labels:

Comments

Post a Comment

Popular posts from this blog

Income Tax Proud Filer Badge for Facebook Profile Picture India

By
"PAN-XXXXXXXXXX Honoring the Honest-Use/Share the Proud Filer Badge" Indian Income Tax Agency is offering all the tax fillers to show up their Proud Filer Badge through Facebook profile picture. Income Tax Department of India is sending email with subject line "PAN-XXXXXXXXXX Honoring the Honest-Use/Share the Proud Filer Badge" to help guide the filers on how to show the Proud Filer Badge. How to Show Income Tax's Proud Filer Badge for Facebook Profile Picture in India Here are the steps to use the Facebook Badge on Mobile Phone: Step 1: Open your Facebook Mobile App Step 2: Click on Profile Pic and the select Add Frame Step 3: Search for Proud Filer, you will get Income Tax Official Profile Badge - Proud Filler by Income Tax India Step 4: Click on the searched Frame. Facebook will set your profile picture with the Proud Filler Badge. Step 5: Click on Save and your are done with adding Proud Filler Badge to your Facebook Profile Picture. Here are the steps to us...
Post a Comment
Read more

Microsoft's Windows-XP OS & Office 2003 Support Ends in April 8, 2014

By
End of Security Updates for Windows XP OS & Office 2003 Windows XP SP3 and Office 2003 Supports Ends Apirl 8, 2014  Image Credit: Microsoft Microsoft has finally announced the date for the end of security updates for its Windows XP operating system. As of now Microsoft is releasing security updates for Windows XP, but due to security issues and to move more users from XP to Windows 8, Microsoft has decided to stop updates in 2014. According to Gartner prediction, more than 15% of medium and large enterprises will still have Windows XP running on at least 10% of their PCs after Microsoft support ends in April 2014. This means, people and organizations using Windows XP SP3 will be prone to bugs and flaws in the OS, as Microsoft is not going to fix those bugs. They will be open to malware, spyware and even viruses. Office 2003 Support Also Ends in April 8, 2014 Microsoft also announced the end of support for Office 2003, in a press conference yesterday in Lagos. Acc...
Post a Comment
Read more

Facebook's Pop-Out Floating Video in News Feed for Desktop Users

By
Looks like Facebook is again testing the feature for Pop-Out video that floats in the news feed while scrolling news feed up and down. Facebook first tested the same feature in 2015 but was not made available for all desktop users. As of know it still seems to be in testing phase as I am not able to see this feature in the same MacBook for different browsers. Like I am able to watch the pop-out and scrolling video in Firefox browser but the same is not working in Chrome browser. The floating video option is made available through 2 options. One is a Video Pop-Out button in the current played video. You have to click on that blue pop-out button to get video moved to left hand side of the news feed. The pop-out video button is in white color when video is not playing. As the video starts playing it color changes to blue. Video Pop-Out Button in Blue Color The second option is scroll down so the current playing video is not visible in your screen, the video will Pop-Out automati...
Post a Comment
Read more