Security News > 2019 > February > Critical Drupal Vulnerability Allows Remote Code Execution

Critical Drupal Vulnerability Allows Remote Code Execution

2019-02-21 06:26

Security updates released on Wednesday for the Drupal content management system (CMS) patch a “highly critical” vulnerability that can be exploited for remote code execution. read more

News URL

http://feedproxy.google.com/~r/Securityweek/~3/DF6HsLR5_cY/critical-drupal-vulnerability-allows-remote-code-execution

#codeexecution #critical #drupal #vulnerability

Related news

Researchers Uncover Nuclei Vulnerability Enabling Signature Bypass and Code Execution (source)
Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection (source)
Cisco fixes ClamAV vulnerability with available PoC and critical Meeting Management flaw (source)
Critical Cacti Security Flaw (CVE-2025-22604) Enables Remote Code Execution (source)
Zyxel CPE devices under attack via critical vulnerability without a patch (CVE-2024-40891) (source)
Microsoft Patches Critical Azure AI Face Service Vulnerability with CVSS 9.9 Score (source)
Critical flaws in Mongoose library expose MongoDB to data thieves, code execution (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Drupal		15	0	66	45	14	125

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.