Bleeping Computer

Drupal Fixes Drupalgeddon2 Security Flaw That Allows Hackers to Take Over Sites

The Drupal CMS team has fixed a highly critical security flaw that allows hackers to take over a site just by accessing an URL. Drupal site owners should immediately —and we mean right now— update ...

Patch now! Attackers exploiting critical malicious code vulnerability in Drupal

Attackers are currently targeting websites created with the CMS Drupal. However, pages are only vulnerable if they use PostgreSQL.
Threat Post

Drupal Patches Critical Bug That Leaves Platform Open to XSS Attack

Drupal has patched several vulnerabilities – both moderately critical and critical – in two versions of its content management system platform. Drupal developers patched two critical vulnerabilities ...
Bleeping Computer

Drupal Patches Critical Bug That Lets Hackers Take Over Sites

The Drupal CMS team has released a security update to address a critical severity access bypass vulnerability in the CMS' core component that could allow attackers to take control of impacted sites.
Threat Post

Two Critical RCE Bugs Patched in Drupal 7 and 8

Drupal’s advisory also included three patches for “moderately critical” bugs. Drupal is urging users to upgrade to the latest release that fixes two critical remote code execution bugs impacting ...
ZDNet

Drupal patches critical CMS vulnerabilities

Earlier this week, the open-source content management system (CMS) provider issued a security advisory detailing a series of bugs which have now been resolved. The vulnerabilities impact version 7 of ...