Security News

Updates released this week for the Drupal and TYPO3 open source content management systems (CMSs) patch vulnerabilities related to how Phar archives are handled. The Phar (PHP Archive) package...

Updates released on Wednesday for Drupal 7 and 8 patch several vulnerabilities affecting third-party Symfony and jQuery components used by the Drupal core. read more

Drupal, the popular open-source content management system, has released security updates to address multiple "moderately critical" vulnerabilities in Drupal Core that could allow remote attackers...

Last week's disclosures are now this week's live attacks Just days after a remote code execution flaw in open-source web publishing software Drupal was made public, researchers have already...

Patch Now to Block Remote Code Execution Exploits of Content Management SystemJust days after Drupal warned of a "highly critical" flaw in its web services modules, hackers came calling,...

CVE-2018-20250, a WinRAR vulnerability that allows attackers to extract a malicious executable to one of the Windows Startup folder to be executed every time the system is booted, and...

Cybercriminals have actively started exploiting an already patched security vulnerability in the wild to install cryptocurrency miners on vulnerable Drupal websites that have not yet applied...

A vulnerability patched recently in the Drupal content management system (CMS) has been exploited in the wild to deliver cryptocurrency miners and other payloads. The attacks started just three...

CMS Project Team Patches "Highly Critical" Remote Code Execution VulnerabilityPatch alert: Some versions of the popular content management system Drupal have a "highly critical" flaw that...

Admins should update immediately to fix a remote code-execution vulnerability.