Drupal has released new updates for its series 6 and 7;
update versions are namely 6.37 and 7.39. The open
source CMS has received security patches in which several
critical vulnerabilities affecting Drupal versions 6 and 7
have been addressed.
There were three vulnerabilities prior to 6.37 and 7.39.
These are cross-site scripting bug in the auto-complete
system, a cross-site request forgery bug in Form API,
and an information disclosure flaw in Access system.
With cross-site forgery vulnerability in Form API,
malicious user can upload files to another user’s
account. Other vulnerability is in the cross-site
scripting in the Ajax system. The third risk is the flaw
in access system that enables malicious users having
elevated permission injecting malicious code in SQL
Most of the Indian companies are developing nice web apps
based on Drupal like Social Network sites, e-commerce sites,
and several other kinds of web development is going on in
Drupal. You can also hire dedicated resources for Drupal
based web development from India.