Web Design and Development

NYU Steinhardt: Helping prospective students chart their course

Drupal - Fri, 03/13/2020 - 14:18
Completed Drupal site or project URL: https://steinhardt.nyu.edu/

NYU Steinhardt has much to offer students—and that was a problem for the school’s website. The site needed to give students a simpler, less overwhelming introduction to the university, while still providing a comprehensive picture of all the school has to offer.

The breadth of available programs at NYU Steinhardt is impressive, but it presented a problem for the school’s website. Over the years, various departments and administrative units had developed their own online look-and-feel and maintained multiple sites. This approach complicated the user experience and made it difficult for prospective students to locate the programs that interested them. This issue became more apparent to the school’s web development team—and its administration—in the wake of efforts to build a responsive layout with standardized elements and to make all the templates digitally accessible. As part of those projects, the team grappled with the reality that each department—and the various sites that formed NYU Steinhardt’s online experience—used different layouts, navigation, and headers. The school needed to convey the variety of its program offerings, as well as provide necessary information for faculty, staff, and alumni. But it needed to do so in a consistent way—one that would help improve the experience for students making a significant and challenging decision.

I'm supporting open source: Drupal Association membership drive

Drupal - Wed, 03/11/2020 - 13:59

Today, we're launching a membership drive. You can help by sharing our message and showing your support.

Help grow membership by visiting our campaign page and sharing with your network. We're supporting the global Drupal project and community with your help!  Together, we make the open source community stronger.

Get your 2020 Membership Certificate

Active members can download a personalized certificate now, and one way to contribute to this membership drive is to print out your certificate (or display it on a screen) and share your selfie with us. Tag with #joinDrupalAssoc #OpenSource, #supportOpenSource to show you care.

Our heartfelt thanks to you—members and supporters—for contributing and participating as individuals and organizations.

Ready to help? Share a post like this or craft your own. 

SVG Formatter - Critical - Cross site scripting - SA-CONTRIB-2020-005

Drupal - Wed, 03/04/2020 - 09:06
Project: SVG FormatterDate: 2020-March-04Security risk: Critical 15∕25 AC:Basic/A:User/CI:Some/II:Some/E:Proof/TD:AllVulnerability: Cross site scriptingDescription: 

SVG Formatter module provides support for using SVG images on your website.

This security release fixes third-party dependencies included in or required by SVG Formatter. XSS bypass using entities and tab.

This vulnerability is mitigated by the fact that an attacker must be able to upload SVG files.

Solution: 

Install the latest version:

Also see the SVG Formatter project page.

Reported By: Fixed By: Coordinated By: