The AltaGrade Blog
Date: Wednesday, Jan 27th, 2021 Security risk: Critical Advisory ID: BACKDROP-SA-CORE-2021-001 CVE ID: CVE-2020-36193 Vulnerability: Third Party Libraries Versions affected: Backdrop Core 1.18.x versions prior to 1.18.1, Backdrop Core 1.17.x versions prior to 1.17.6 Backdrop versions 1.16 and prior do not receive security coverage.
The Backdrop project uses the pear Archive_Tar library, which has released a security update that impacts Backdrop. For more information please see:
Project: Subgroup Version: 1.0.x-dev Date: 2021-January-27 Security risk: Less critical 9∕25 Vulnerability:Access bypass
This module enables you to add groups to other groups in a tree structure where access can be inherited up or down the tree.
Project: Open Social Versions: 8.x-9.x-dev, 8.x-8.x-dev Date: 2021-January-27 Security risk: Moderately critical 12∕25 Vulnerability: Access bypass
The optional Social Auth Extra module enables you to use the single sign-on methods provided by Open Social e.g. Facebook, LinkedIn, Google and Twitter.
Project: Open Social Versions: 8.x-9.x-dev, 8.x-8.x-dev Date: 2021-January-27 Security risk: Moderately critical 10∕25 Vulnerability: Access bypass
The Social User Export module enables users within Open Social to create an export of users and download this to a CSV file.
Project: Drupal core
Security risk: Critical 18∕25
Vulnerability: Third-party libraries
The Drupal project uses the pear Archive_Tar library, which has released a security update that impacts Drupal. For more information please see:
Backdrop CMS turned 6 years on January 15, 2021 and on the same day the Backdrop community has proudly released version 1.18.0. Congratulations to all users and developers of Backdrop CMS - the open source CMS that helps you build websites for businesses and non-profits in the best traditions of Drupal 7!
This is to announce the initial release of Paragraphs jQuery UI Accordion module for Backdrop. Initially created for Drupal by Maksym Shakhrai, the module is now ported to Backdrop by AltaGrade team.
Paragraphs jQuery UI Accordion is a module to create paragraphs with accordion effect in your Backdrop website's content. It based on jQuery UI Accordion plugin which already included in core, so no need to install additional libraries.
We are happy to announce the initial release of FAQ field module for Backdrop. Initially created for Drupal 7 by Patrick Drotleff and now ported to Backdrop by AltaGrade team, FAQ Field module provides a field for frequently asked questions.
Adding to any content type or user entity, you can create simple but smooth frequently asked questions on any piece of content on your Backdrop website.
WordPress 5.6 “Simone,” named in honor of American performer and civil rights activist Nina Simone, has been released today. The release was led by an all-women release squad, a first in WordPress history. The new version includes many enhancements for the block editor, accessibility improvements, application password support for the REST API, and a new default theme.