Posted by michaels23 on September 17, 2013 at 11:56am
Does anyone have experience with PCI compliance for Drupal sites? I manage a Dreamhost Drupal site for a client that demands PCI compliance and I've hit a snag I need help with.
We've been passing SecurityMetrics scans consistently for several months. Suddenly, the scan is failing with dozens of issues that begin like, "Title: command injection in form_id parameter ..."
Can anyone help me figure out what this means? Is this something I can fix?
Many thanks!