Security News

Drupal Sites Targeted With Backdoors, Miners in Drupalgeddon2 Attacks
2018-04-18 05:27

The recently patched Drupal vulnerability tracked as CVE-2018-7600 and dubbed Drupalgeddon2 has been exploited in the wild to deliver backdoors, cryptocurrency miners and other types of malware. read more

Hackers Have Started Exploiting Drupal RCE Exploit Released Yesterday
2018-04-14 08:33

Hackers have started exploiting a recently disclosed critical vulnerability in Drupal shortly after the public release of working exploit code. Two weeks ago, Drupal security team discovered a...

Running Drupal? You need to patch, patch, patch right now!
2018-04-01 00:00

Website building biz warns exploit may come in hours Anyone running a website built with Drupal should stop whatever they are doing right now and install critical security patches.…

Drupal Issues Highly Critical Patch: Over 1M Sites Vulnerable
2018-03-29 19:58

Drupal developers are urged to patch a bug that allows attackers to take over a site simply by visiting it.

Drupalgeddon: Critical Flaw Exposes Million Drupal Websites to Attacks
2018-03-29 04:47

All versions of the Drupal content management system are affected by a highly critical vulnerability that can be easily exploited to take complete control of affected websites in what may turn out...

Drupal to Patch Highly Critical Vulnerability This Week
2018-03-26 12:25

Drupal announced plans to release a security update for Drupal 7.x, 8.3.x, 8.4.x, and 8.5.x on March 28, 2018, aimed at addressing a highly critical vulnerability. The Drupal security team hasn’t...

Drupal Forewarns ‘Highly Critical’ Bug to be Patched Next Week
2018-03-22 17:38

Drupal is giving developers ample time to prepare for an update that patches a “highly critical” flaw because exploits might be developed within hours or days of disclosure.

Drupal Patches Critical Bug That Leaves Platform Open to XSS Attack
2018-02-23 22:13

Drupal has patched several vulnerabilities – both moderately critical and critical – in two versions of its content management system platform.

Several Vulnerabilities Patched in Drupal
2018-02-22 13:27

Updates released on Wednesday for Drupal 7 and 8 patch several vulnerabilities, including issues rated “critical.” No bug fixes are included in the latest releases. One of the critical security...

Drupal Patches Critical Access Bypass in Core Engine (Threatpost)
2017-08-17 19:50

A critical flaw in Drupal CMS platform could allow unwanted access to the platform allowing a third-party to view, create, update or delete entities.