Talk:Drupal/Archives/2010/May

Security Section...
The security section is biased and obviously written by an advocate of this software. Looking at OSVDB makes me think that this is one of the most vulnerable webapps I've ever seen..

http://osvdb.org/search/search?search[vuln_title]=drupal+-module&search[text_type]=titles&search[s_date]=&search[e_date]=&search[refid]=&search[referencetypes]=&search[vendors]=&search[cvss_score_from]=&search[cvss_score_to]=&search[cvss_av]=*&search[cvss_ac]=*&search[cvss_a]=*&search[cvss_ci]=*&search[cvss_ii]=*&search[cvss_ai]=*&kthx=search

Including plugins: http://osvdb.org/search?search[vuln_title]=drupal&search[text_type]=titles —Preceding unsigned comment added by 99.224.115.100 (talk) 21:07, 15 April 2010 (UTC)



I don't think you know what you're talking about tbh. What is your level of expertise regarding web application security? These are all vulnerabilities which have been reported and fixed, and are mentioned in the security section of this article. The fact is that Drupal does have a high level of security, which is one of the reasons it has been used for a lot of high level projects.