Security News > 2018 > February > Drupal Patches Critical Bug That Leaves Platform Open to XSS Attack

Drupal Patches Critical Bug That Leaves Platform Open to XSS Attack

2018-02-23 22:13

Drupal has patched several vulnerabilities – both moderately critical and critical – in two versions of its content management system platform.

News URL

http://threatpost.com/drupal-patches-critical-bug-that-leaves-platform-open-to-xss-attack/130070/

#attack #critical #drupal #XSS

Related news

Hackers exploit critical Aviatrix Controller RCE flaw in attacks (source)
Critical SimpleHelp Flaws Allow File Theft, Privilege Escalation, and RCE Attacks (source)
Zyxel CPE devices under attack via critical vulnerability without a patch (CVE-2024-40891) (source)
Critical RCE bug in Microsoft Outlook now exploited in attacks (source)
Critical PostgreSQL bug tied to zero-day attack on US Treasury (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Drupal		15	0	66	45	14	125

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.