October (CMS) explained

October
Developer:Alexey Bobkov, Samuel Georges
Released:[1]
Programming Language:PHP
Operating System:Cross-platform
Genre:Content management system
License:Proprietary software

October is a self-hosted content management system (CMS) based on the PHP programming language and Laravel web application framework. It supports MariaDB, MySQL, PostgreSQL, SQLite and SQL Server for the database back end[2] and uses a flat file database for the front end structure.[3] The October CMS covers a range of capabilities such as users, permissions, themes, and plugins, and is seen as a simpler alternative to WordPress.[4] [5] [6]

The platform is intended to have a small learning curve and a template system easily manageable with version control systems.[6] As of November 2023, October is the second-most starred PHP CMS repository hosted on GitHub[7] and is 17th most popular on the Entire Internet in Open Source category according to built with.[8]

On April 12, 2021, October CMS transitioned from using an MIT License to a proprietary software model[9] citing concerns over a lack of sustainability with the open-source model.

Features

October offers the following features, among others:

Ukraine cyberattacks

From the 13th to 14th of January 2022, a known vulnerability in October CMS was used to deface the Ministry of Education and Science, the Ministry of Foreign Affairs, the Cabinet of Ministers and other Ukrainian government websites as part of the 2022 Ukraine cyberattacks.[13] [14] The Ukrainian Ministry of Digital Transformation announced that there was no data leak.[15] The vulnerabilities were fixed nearly a year before the attack,[16] although not all sites were running the latest version.[17] [18] Ukrainian cybersecurity agencies said the attack involved exploitation of CVE-2021-32648,[19] a vulnerability in the October CMS, as well as the exploitation of the notorious Log4Shell flaw, and DDoS attacks.[20]

See also

Notes and References

  1. http://laravel.io/forum/05-15-2014-announce-octobercms-beta "Announcement: OctoberCMS Beta"
  2. Web site: Database: Getting Started - Laravel - The PHP Framework For Web Artisans . 2024-01-04 . laravel.com.
  3. https://medium.com/laravel-4/laravel-4-file-based-cms-4bca98a74f4d "Laravel 4 File-Based CMS"
  4. https://www.smashingmagazine.com/2019/03/wordpress-october-cms/ "A Detailed Comparison Between WordPress And October CMS "
  5. https://www.authentic-studio.com/wordpress-cms-vs-october-cms-the-ultimate-showdown/ "WordPress CMS vs October CMS: The Ultimate Showdown"
  6. https://medium.com/cms-stories/alternative-content-management-part-2-f260653d4df1 "Alternative Content Management — Part 2"
  7. https://github.com/search?utf8=%E2%9C%93&q=sort%3Astars+language%3APHP+stars%3A%3E1+CMS "GitHub search"
  8. https://trends.builtwith.com/cms/October-CMS "October CMS Usage Statistics"
  9. https://octobercms.com/blog/post/october-cms-moves-become-paid-platform "October CMS Moves to Become a Paid Platform"
  10. http://octobercms.com/docs/cms/components "CMS Components"
  11. http://www.sitepoint.com/introducing-octobercms-laravel-based-cms/ "Introducing October – a Laravel-based CMS"
  12. http://www.developerdrive.com/2014/12/introducing-october-cms/ "Introducing October CMS"
  13. https://archive.today/20220114145312/https://twitter.com/KimZetter/status/1481890639029551106 "Sources tell me ~15 sites in Ukraine - all using October content management system - have been defaced"
  14. https://thehackernews.com/2022/01/massive-cyber-attack-knocks-down.html "Massive Cyber Attack Knocks Down Ukrainian Government Websites"
  15. https://t.me/mintsyfra/2482 "Official statement of the Ministry of Digital Investigation of a link with a hacker attack on a number of sites"
  16. Web site: Build software better, together . .
  17. https://ain.capital/2022/01/14/hackers-attack-some-ukrainian-government-websites/ "Ukrainian government websites attacked: How could it happen?"
  18. https://www.bleepingcomputer.com/news/security/multiple-ukrainian-government-websites-hacked-and-defaced/ "Multiple Ukrainian government websites hacked and defaced"
  19. https://nvd.nist.gov/vuln/detail/CVE-2021-32648 "CVE-2021-32648 Detail"
  20. https://www.securityweek.com/ukraine-attacks-involved-exploitation-log4j-october-cms-vulnerabilities "Ukraine Attacks Involved Exploitation of Log4j, October CMS Vulnerabilities"