Security News > 2017 > August > Drupal Patches Critical Access Bypass in Core Engine (Threatpost)
2017-08-17 19:50
A critical flaw in Drupal CMS platform could allow unwanted access to the platform allowing a third-party to view, create, update or delete entities.
News URL
http://threatpost.com/drupal-patches-critical-access-bypass-in-core-engine/127515/
Related news
- Ivanti warns of critical vTM auth bypass with public exploit (source)
- Critical SAP flaw allows remote attackers to bypass authentication (source)
- GitHub Enterprise Server vulnerable to critical auth bypass flaw (source)
- Critical GitHub Enterprise Server auth bypass flaw fixed (CVE-2024-6800) (source)
- GitLab releases fix for critical SAML authentication bypass flaw (source)
- GitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE Editions (source)
- Patch this critical Safeguard for Privileged Passwords auth bypass flaw (CVE-2024-45488) (source)
- MFA bypass becomes a critical security issue as ransomware tactics advance (source)
- Critical Ivanti vTM auth bypass bug now exploited in attacks (source)