Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

It's like Exploit Wednesday for Windows, except Drupal is a lot easier to reverse and find where the security issues lie given it's open-source.. So instead of taking a day to reverse/find holes, it takes a matter of minutes.


In addition, the issue was leaked pre-announcement among a great many parties who had time to prepare.


Do you have more detail on that? I'd hazard a guess at irresponsible disclosure, or an internal Drupal employee leak.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: