Software:October (CMS)

October
Developer(s)	Alexey Bobkov, Samuel Georges
Initial release	May 15, 2014; 9 years ago
Stable release	Template:October (CMS) version / Template:October (CMS) version
Written in	PHP
Operating system	Cross-platform
Type	Content management system
License	Proprietary software
Website	{{{1}}}

Short description: Content management system

October is a self-hosted content management system (CMS) based on the PHP programming language and Laravel web application framework. It supports MariaDB, MySQL, PostgreSQL, SQLite and SQL Server for the database back end^[2] and uses a flat file database for the front end structure.^[3] The October CMS covers a range of capabilities such as users, permissions, themes, and plugins, and is seen as a simpler alternative to WordPress.^[4]^[5]^[6]

The platform is intended to have a small learning curve and a template system easily manageable with version control systems.^[6] As of November 2023, October is the second-most starred PHP CMS repository hosted on GitHub^[7] and is 17th most popular on the Entire Internet in Open Source category according to built with.^[8]

On April 12, 2021, October CMS transitioned from using an MIT License to a proprietary software model^[9] citing concerns over a lack of sustainability with the open-source model.

Features

October offers the following features, among others:

Components, a key feature that are configurable building elements that can be attached to any page.^[10]
Building an interface requires minimal programming.^[11]
Flat files are used to serve the website structure.^[12]
Includes an Ajax framework built in for back-end and front-end.^[11]
Uses Twig as template engine. This makes it possible to completely separate data from the templates.
File manager with CDN support and image cropping.
CSS and JavaScript assets can be combined and minified with just a single tag in the CMS templates.
The whole setup is event-driven, which enables the user to hook into core or plugin processes and extend them.
Updates and plugins are delivered with a package manager.
Community-contributed extensions in the October CMS marketplace.
The back-end is translated into 36 languages.

Ukraine cyberattacks

From the 13th to 14th of January 2022, a known vulnerability in October CMS was used to deface the Ministry of Education and Science, the Ministry of Foreign Affairs, the Cabinet of Ministers and other Ukrainian government websites as part of the 2022 Ukraine cyberattacks.^[13]^[14] The Ukrainian Ministry of Digital Transformation announced that there was no data leak.^[15] The vulnerabilities were fixed nearly a year before the attack,^[16] although not all sites were running the latest version.^[17]^[18] Ukrainian cybersecurity agencies said the attack involved exploitation of CVE-2021-32648,^[19] a vulnerability in the October CMS, as well as the exploitation of the notorious Log4Shell flaw, and DDoS attacks.^[20]

References

↑ "Announcement: OctoberCMS Beta", by daftspunk, May 15, 2014. Retrieved on 18 May 2015.
↑ "Database: Getting Started - Laravel - The PHP Framework For Web Artisans". https://laravel.com/docs/8.x/database.
↑ "Laravel 4 File-Based CMS", by Christopher Pitt, February 2, 2014
↑ "A Detailed Comparison Between WordPress And October CMS "
↑ "WordPress CMS vs October CMS: The Ultimate Showdown"
↑ ^6.0 ^6.1 "Alternative Content Management — Part 2", by Christos Chiotis, May 20, 2014.
↑ "GitHub search", sort:stars language:PHP stars:>1 CMS. Retrieved on 20 May 2015.
↑ "October CMS Usage Statistics"
↑ "October CMS Moves to Become a Paid Platform"
↑ "CMS Components", Retrieved on 16 May 2015.
↑ ^11.0 ^11.1 "Introducing October – a Laravel-based CMS", by Nick Salloum, November 17, 2014
↑ "Introducing October CMS", by Chad Cantrell, December 30, 2014
↑ "Sources tell me ~15 sites in Ukraine - all using October content management system - have been defaced", by Kim Zetter
↑ "Massive Cyber Attack Knocks Down Ukrainian Government Websites"
↑ "Official statement of the Ministry of Digital Investigation of a link with a hacker attack on a number of sites"
↑ "Build software better, together". https://github.com/octobercms/october/security/advisories/GHSA-mxr5-mc97-63rc.
↑ "Ukrainian government websites attacked: How could it happen?"
↑ "Multiple Ukrainian government websites hacked and defaced"
↑ "CVE-2021-32648 Detail"
↑ "Ukraine Attacks Involved Exploitation of Log4j, October CMS Vulnerabilities"

0.00

(0 votes)

Original source: https://en.wikipedia.org/wiki/October (CMS). Read more

[1] "Announcement: OctoberCMS Beta", by daftspunk, May 15, 2014. Retrieved on 18 May 2015.

[2] "Database: Getting Started - Laravel - The PHP Framework For Web Artisans". https://laravel.com/docs/8.x/database.

[3] "Laravel 4 File-Based CMS", by Christopher Pitt, February 2, 2014

[4] "A Detailed Comparison Between WordPress And October CMS "

[5] "WordPress CMS vs October CMS: The Ultimate Showdown"

[medium.com-6] 6.0 ^6.1 "Alternative Content Management — Part 2", by Christos Chiotis, May 20, 2014.

[7] "GitHub search", sort:stars language:PHP stars:>1 CMS. Retrieved on 20 May 2015.

[8] "October CMS Usage Statistics"

[9] "October CMS Moves to Become a Paid Platform"

[10] "CMS Components", Retrieved on 16 May 2015.

[sitepoint-11] 11.0 ^11.1 "Introducing October – a Laravel-based CMS", by Nick Salloum, November 17, 2014

[12] "Introducing October CMS", by Chad Cantrell, December 30, 2014

[13] "Sources tell me ~15 sites in Ukraine - all using October content management system - have been defaced", by Kim Zetter

[14] "Massive Cyber Attack Knocks Down Ukrainian Government Websites"

[15] "Official statement of the Ministry of Digital Investigation of a link with a hacker attack on a number of sites"

[16] "Build software better, together". https://github.com/octobercms/october/security/advisories/GHSA-mxr5-mc97-63rc.

[17] "Ukrainian government websites attacked: How could it happen?"

[18] "Multiple Ukrainian government websites hacked and defaced"

[19] "CVE-2021-32648 Detail"

[20] "Ukraine Attacks Involved Exploitation of Log4j, October CMS Vulnerabilities"

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]

[9]

[10]

[11]

[12]

[13]

[14]

[15]

[16]

[17]

[18]

[19]

[20]

v t e Web frameworks
Comparison
C++	CppCMS Wt
CLI	ASP.NET Core AJAX Dynamic Data MVC Razor Web Forms DNN BFC MonoRail OpenRasta Umbraco WebSharper
ColdFusion	CFWheels ColdBox Platform ColdSpring Fusebox Model-Glue
Common Lisp	Caveman2 CL-HTTP Weblocks
Haskell	Yesod Snap
Java	AppFuse Flexive Grails GWT ICEfaces ItsNat JavaServer Faces JHipster Jspx JWt OpenXava Play Remote Application Platform RIFE Seam Sling Spring Stripes Struts Tapestry Vaadin Vert.x WebWork Wicket WaveMaker ZK
JavaScript	Angular/AngularJS Backbone.js Chaplin.js Closure Dojo Toolkit Ember.js Express.js Ext JS jQuery Knockout.js Meteor MooTools Node.js OpenUI5 Prototype React Rico script.aculo.us Sencha Touch SproutCore Svelte Vue.js Wakanda
Perl	Catalyst Dancer Mason Maypole Mojolicious WebGUI
PHP	CakePHP CodeIgniter Drupal Fat-Free FuelPHP Flow Grav Gyroscope Horde Joomla Kohana Laravel Lithium Midgard MODX Nette Phalcon PHP-Fusion Pop PHP PRADO ProcessWire Qcodo Silex SilverStripe Symfony TYPO3 WordPress XOOPS Yii Zend Framework
Python	BlueBream CherryPy Django Flask Grok Nevow Pyjs Pylons Pyramid Quixote TACTIC Tornado TurboGears web2py Webware Zope 2 more...
Ruby	Camping Merb Padrino Ruby on Rails Sinatra
Scala	Lift Play Scalatra
Smalltalk	AIDA/Web Seaside
Other languages	Vibe.d (D) Application Express (PL/SQL) Grails (Groovy) Kepler (Lua) OpenACS (Tcl) Phoenix (Elixir) SproutCore (JavaScript-Ruby) Yaws (Erlang)

Anonymous

Search

Software:October (CMS)

Namespaces

More

Page actions

Contents

Features

Ukraine cyberattacks

See also

References

Navigation

Navigation

Help

Translate

Wiki tools

Wiki tools

Anonymous

Search

Software:October (CMS)

Features

Ukraine cyberattacks

See also

References

Navigation

Wiki tools

Page tools

Other projects

Categories