Threat Post

All Drupal Versions Susceptible to Code Execution, Credential Theft Vulnerabilities

A number of issues exist in the content management system Drupal that could lead to code execution and the theft of database credentials via a man-in-the-middle attack, a researcher warns. A number of ...
Yahoo Finance

Drupal CMS: Groundbreaking New Version of Drupal Detailed at DrupalCon Singapore 2024

MARINA BAY, Singapore, Nov. 6, 2024 /PRNewswire/ -- Drupal CMS, the groundbreaking package built on Drupal core with the marketer in mind, will launch on 15 January 2025. Conference attendees at ...
Threat Post

Drupal Patches Critical Access Bypass in Core Engine

A critical flaw in Drupal CMS platform could allow unwanted access to the platform allowing a third-party to view, create, update or delete entities. Website management platform Drupal released ...
ZDNet

Drupal patches critical CMS vulnerabilities

Earlier this week, the open-source content management system (CMS) provider issued a security advisory detailing a series of bugs which have now been resolved. The vulnerabilities impact version 7 of ...
Bleeping Computer

Drupal issues emergency fix for critical bug with known exploits

Drupal has released emergency security updates to address a critical vulnerability with known exploits that could allow for arbitrary PHP code execution on some CMS versions. "According to the regular ...