Drupal

👋 Sign in for the ability to sort posts by relevant, latest, or top.

victorstackAI

Mar 11

Drupal OAuth Scope Debt, WordPress Block States, and the Security Work That Still Matters

#devlog #learning #ai #drupal

4 min read

victorstackAI

Mar 11

Review: Ally WordPress Plugin Unauthenticated SQL Injection (400k+ Sites) and a Repeatable Response Playbook for WordPress Teams

#security #wordpress #drupal #incidentresponse

4 min read

victorstackAI

Mar 11

SA-CONTRIB-2026-018: SAML SSO Reflected XSS — Script Injection on Your Login Page

#drupal #wordpress #security #drupalcms

3 min read

victorstackAI

Mar 11

SA-CONTRIB-2026-016: Islandora Arbitrary File Upload + XSS — A Dangerous Chain

#drupal #wordpress #security #drupalcms

3 min read

victorstackAI

Mar 11

SA-CONTRIB-2026-017: Drupal Canvas SSRF + Info Disclosure — The Hidden Submodule Problem

#drupal #wordpress #security #review

3 min read

victorstackAI

Mar 11

SA-CONTRIB-2026-015: CAPTCHA Access Bypass — Token Reuse That Breaks Your Spam Gate

#drupal #wordpress #security #drupalcms

3 min read

victorstackAI

Mar 10

SA-CONTRIB-2026-019: Responsive Favicons Persistent XSS — Admin Config as Attack Surface

#drupal #wordpress #security #drupalcms

3 min read

victorstackAI

Mar 10

SA-CONTRIB-2026-012: Theme Negotiation by Rules CSRF — GET Requests That Mutate State

#drupal #drupalcms #wordpress #review

4 min read

victorstackAI

Mar 10

Review: Real-Time Collaboration in the WordPress Block Editor and What Changes for Plugin and Block Developers

#wordpress #drupal #gutenberg #blockeditor

4 min read

victorstackAI

Mar 10

Drupal SA-CONTRIB-2026-011 through 019: Full Triage Map and Impact Assessment

#drupal #wordpress #security #triage

4 min read

victorstackAI

Mar 10

assertEqualHTML() in WordPress: Kill Your Brittle HTML Tests

#wordpress #drupal #testing #phpunit

4 min read

victorstackAI

Mar 10

WordPress 7.0 Beta 2 Compatibility Risks and Migration Test Checklist

#wordpress #drupal #gutenberg #compatibility

4 min read

victorstackAI

Mar 9

Review: GitHub Security Lab's Open-Source AI Vulnerability-Scanning Framework for Drupal Module and WordPress Plugin CI Pipel...

#security #devops #ai #drupal

4 min read

victorstackAI

Mar 9

Review: GitHub Agentic Workflows Security Architecture Translated into Enforceable CI/CD Guardrails for Drupal and WordPress ...

#githubactions #security #drupal #wordpress

3 min read

victorstackAI

Mar 9

Mastering Upstream Dependency Management in Drupal Multisites

#drupal #architecture #composer #multisite

2 min read

👋 Sign in for the ability to sort posts by relevant, latest, or top.

DEV Community

# drupal

Drupal OAuth Scope Debt, WordPress Block States, and the Security Work That Still Matters

Review: Ally WordPress Plugin Unauthenticated SQL Injection (400k+ Sites) and a Repeatable Response Playbook for WordPress Teams

SA-CONTRIB-2026-018: SAML SSO Reflected XSS — Script Injection on Your Login Page

SA-CONTRIB-2026-016: Islandora Arbitrary File Upload + XSS — A Dangerous Chain

SA-CONTRIB-2026-017: Drupal Canvas SSRF + Info Disclosure — The Hidden Submodule Problem

SA-CONTRIB-2026-015: CAPTCHA Access Bypass — Token Reuse That Breaks Your Spam Gate

SA-CONTRIB-2026-019: Responsive Favicons Persistent XSS — Admin Config as Attack Surface

SA-CONTRIB-2026-012: Theme Negotiation by Rules CSRF — GET Requests That Mutate State

Review: Real-Time Collaboration in the WordPress Block Editor and What Changes for Plugin and Block Developers

Drupal SA-CONTRIB-2026-011 through 019: Full Triage Map and Impact Assessment

assertEqualHTML() in WordPress: Kill Your Brittle HTML Tests

WordPress 7.0 Beta 2 Compatibility Risks and Migration Test Checklist

Review: GitHub Security Lab's Open-Source AI Vulnerability-Scanning Framework for Drupal Module and WordPress Plugin CI Pipel...

Review: GitHub Agentic Workflows Security Architecture Translated into Enforceable CI/CD Guardrails for Drupal and WordPress ...

Mastering Upstream Dependency Management in Drupal Multisites