Does Log4j Vulnerability Affect Backdrop ?

May I know if backdrop vulnerable to the Log4shell/Log4j (CVE-2021-44228) in any stage or version or third party plugin found vulnerable to this ? Is there any official statement from backdrop on this ? I need a firm answer on this. Thanks.

Log in or register to post comments

Comments

Backdrop is definitely not vulnerable because of Log4j. Log4j is a Java component; Backdrop doesn't directly use Java, it's written in PHP, HTML, and JavaScript, with a smattering of scripting languages and configurations.

Note: I don't speak officially for Backdrop, but I'm pretty confident about this.

Log in or register to post comments

I'm glad to hear this. Thanks for your affirmation.

Log in or register to post comments

Weekly office hours

Bring your questions to our weekly virtual office hours, every Wednesday. Everyone is welcome.

Recent topics

Specific tags to work in CKEditor 5

Posted 2 days 20 hours ago by (JugglingCoder) in How-To and Troubleshooting

Hello - Glad to met Backdrop

Posted 1 week 2 days ago by (BKaernel) in Requests and Feedback

Backlinks for Entity Reference?

Posted 1 week 5 days ago by (opentype) in How-To and Troubleshooting

Allow admin to select admin language seperate from front end language (multilingual)

Posted 3 weeks 10 hours ago by (stpaultim) in How-To and Troubleshooting

Layer management in Leaflet

Posted 3 weeks 2 days ago by (jcesar) in How-To and Troubleshooting

Recent comments

Ruby Text can be a bit of a hassle to edit... Yes, I can imagine that. No idea, how an editor dialog (or whatever) for easier editing of those should look like - in terms of...

Posted 1 min 22 sec ago by (indigoxela) on:

Specific tags to work in CKEditor 5

"why are these tags only relevant for admins?" I'm allowing the editor as well. That being said, Ruby Text can be a bit of a hassle to edit... easy to accidentally delete a tag or part of a...

Posted 6 hours 34 min ago by (JugglingCoder) on:

Specific tags to work in CKEditor 5

Out of curiosity: why are these tags only relevant for admins? Don't "regular" editors on that site also need them under circumstances? Yes, the editors play nicely, no problem to...

Posted 1 day 20 hours ago by (indigoxela) on:

Specific tags to work in CKEditor 5

Worked like a charm! Exactly what I envisioned... now I can edit the ruby text right in the editor, sweet:) Thank you! For those who may have a similar issue, try TinyMCE, create a new "text...

Posted 1 day 21 hours ago by (JugglingCoder) on:

Specific tags to work in CKEditor 5

Yes, you can use TinyMCE on some content and CKEditor5 in others. There is no problem having both enabled on a system.

Posted 1 day 23 hours ago by Martin Price | System Horizons Ltd (yorkshirepudding) on:

Specific tags to work in CKEditor 5

Log in or register to add new topics