article thumbnail

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

The Last Watchdog

You very likely will interact with a content management system (CMS) multiple times today. For instance, the The Last Watchdog article you are reading uses a CMS to store posts, display them in an attractive manner, and provide search capabilities. Security is essential for a CMS. Best security practices.

CMS 262
article thumbnail

Joomla CMS Patches Critical XSS Vulnerabilities

Data Breach Today

Millions of Websites Potentially at Risk Cross-site scripting vulnerabilities in Joomla, a widely used free-source content management system, were fixed in a patch published Tuesday by the open-source project that maintains the software. The flaws potentially expose millions of websites to attacks that can end with remote code execution.

CMS 249
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Hackers Target Fresh Drupal CMS Flaw to Infiltrate Sites

Data Breach Today

CMS Project Team Patches "Highly Critical" Remote Code Execution Vulnerability Patch alert: Some versions of the popular content management system Drupal have a "highly critical" flaw that attackers can exploit to remotely execute code.

CMS 244
article thumbnail

A flaw in Concrete5 CMS could have allowed website takeover

Security Affairs

A remote code execution (RCE) vulnerability affecting the Concrete5 CMS exposed numerous servers to full takeover, experts warn. A recently addressed remote code execution (RCE) flaw in the Concrete5 CMS exposed numerous websites to attacks. EdgeScan experts also provided a list of recommendations to keep the CMS secure.

CMS 112
article thumbnail

Drupal developers fixed a code execution flaw in the popular CMS

Security Affairs

The post Drupal developers fixed a code execution flaw in the popular CMS appeared first on Security Affairs. Drupal development team released security updates to fix multiple issues, including a critical code execution flaw. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

CMS 112
article thumbnail

Fast Company CMS Hack Raises Security Questions

Dark Reading

The company's website remains offline after hackers used its compromised CMS to send out racist messages.

CMS 81
article thumbnail

EnemyBot malware adds new exploits to target CMS servers and Android devices

Security Affairs

LFI CVE-2018-16763 Fuel CMS 1.4.1 The post EnemyBot malware adds new exploits to target CMS servers and Android devices appeared first on Security Affairs. RCE CVE-2020-5902 F5 BigIP RCE No CVE (vulnerability published on 2019) ThinkPHP 5.X Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

CMS 141