May I know if backdrop vulnerable to the Log4shell/Log4j (CVE-2021-44228) in any stage or version or third party plugin found vulnerable to this ? Is there any official statement from backdrop on this ? I need a firm answer on this. Thanks.
Weekly office hours
Bring your questions to our weekly virtual office hours, every Wednesday. Everyone is welcome.
Recent topics
Posted 1 day 21 hours ago by (willowf) in Requests and Feedback
Posted 2 days 8 hours ago by (stpaultim) in How-To and Troubleshooting
Posted 3 days 22 hours ago by (breckenr) in How-To and Troubleshooting
Posted 4 days 45 min ago by (eldanet) in How-To and Troubleshooting
Posted 5 days 32 min ago by RS Snyder (theflightrs) in How-To and Troubleshooting
Recent comments
I’m working on a group within the project comunidadthreads.com I launched using BackdropCMS, where I’ll be posting short, easy-to-follow tutorials for anyone interested in learning how to build...
Let’s Bring BackdropCMS to the Spanish-Speaking Community
I could create tutorials, with images and screenshots, that explain step by step how to install and use BackdropCMS, designed especially for non-technical people. The idea is to create clear...
Let’s Bring BackdropCMS to the Spanish-Speaking Community
We have had Spanish Language sessions at Backdrop LIVE in the past. If anyone would like to facilitate a session at Backdrop LIVE in Spanish OR about creating more Spanish resources, that would...
Let’s Bring BackdropCMS to the Spanish-Speaking Community
Hello, if at the general level give ease of access to information, for most freelancers who want to put together a portfolio, a blog for editors. Something that is easy to understand and use and...
Let’s Bring BackdropCMS to the Spanish-Speaking Community
Yes, Backdropcms is multilanguage, what I mean is information such as guides, tutorials, etc. To be accessible to the Spanish language.
Comments
Backdrop is definitely not vulnerable because of Log4j. Log4j is a Java component; Backdrop doesn't directly use Java, it's written in PHP, HTML, and JavaScript, with a smattering of scripting languages and configurations.
Note: I don't speak officially for Backdrop, but I'm pretty confident about this.
I'm glad to hear this. Thanks for your affirmation.