Does Log4j Vulnerability Affect Backdrop ?

May I know if backdrop vulnerable to the Log4shell/Log4j (CVE-2021-44228) in any stage or version or third party plugin found vulnerable to this ? Is there any official statement from backdrop on this ? I need a firm answer on this. Thanks.

Log in or register to post comments

Comments

Backdrop is definitely not vulnerable because of Log4j. Log4j is a Java component; Backdrop doesn't directly use Java, it's written in PHP, HTML, and JavaScript, with a smattering of scripting languages and configurations.

Note: I don't speak officially for Backdrop, but I'm pretty confident about this.

Log in or register to post comments

I'm glad to hear this. Thanks for your affirmation.

Log in or register to post comments

Weekly office hours

Bring your questions to our weekly virtual office hours, every Wednesday. Everyone is welcome.

Recent topics

Specific tags to work in CKEditor 5

Posted 1 day 5 hours ago by (JugglingCoder) in How-To and Troubleshooting

Hello - Glad to met Backdrop

Posted 1 week 1 day ago by (BKaernel) in Requests and Feedback

Backlinks for Entity Reference?

Posted 1 week 3 days ago by (opentype) in How-To and Troubleshooting

Allow admin to select admin language seperate from front end language (multilingual)

Posted 2 weeks 5 days ago by (stpaultim) in How-To and Troubleshooting

Layer management in Leaflet

Posted 3 weeks 12 hours ago by (jcesar) in How-To and Troubleshooting

Recent comments

Out of curiosity: why are these tags only relevant for admins? Don't "regular" editors on that site also need them under circumstances? Yes, the editors play nicely, no problem to...

Posted 5 hours 28 min ago by (indigoxela) on:

Specific tags to work in CKEditor 5

Worked like a charm! Exactly what I envisioned... now I can edit the ruby text right in the editor, sweet:) Thank you! For those who may have a similar issue, try TinyMCE, create a new "text...

Posted 7 hours 1 min ago by (JugglingCoder) on:

Specific tags to work in CKEditor 5

Yes, you can use TinyMCE on some content and CKEditor5 in others. There is no problem having both enabled on a system.

Posted 8 hours 13 min ago by Martin Price | System Horizons Ltd (yorkshirepudding) on:

Specific tags to work in CKEditor 5

Thank you both for your suggestions. Yeah, I'll give TinyMCE a try... better than trying to fight that behemoth CKEditor 5. The TinyMCE page says it can "co-exist with CKEditor" which is...

Posted 12 hours 46 min ago by (JugglingCoder) on:

Specific tags to work in CKEditor 5

The specific tags I need are "<ruby>" and "<rt>" Wow, yeah, that's a pain with CKEditor5. A custom plugin, for sure, but no clue, what the code has to look like...

Posted 1 day 1 hour ago by (indigoxela) on:

Specific tags to work in CKEditor 5

Log in or register to add new topics