Security

Drupal announced fixes for 4 security vulnerabilities

Drupal's security advisory has announced the patches to fix 2 moderate and 2 less critical vulnerabilities in Drupal 7x and 8x versions. One of the moderately critical vulnerability patch is related to DoS loop holes. Its highly recommended to update your Drupal site to respective 7.52 and 8.2.3. Notably Drupal 8.2.3 includes only security patches.

Security threats for web applications

CSRF, DoS, SQL injection and XSS are few of the most common security threats for any web application. Looking at the expand-ability of web preventing such attacks is always on priority. Apart from DoS rest threats can well be prevented at application level. Prevention of DoS is often difficult, expensive and needs 3rd party tools.