Drupal developers are warning of attacks on websites created with the Content Management System (CMS). Subsequently, attackers gain access to actually isolated data. However, they can also gain higher ...
A highly critical SQL injection vulnerability in Drupal core has raised concerns across organizations running PostgreSQL-backed Drupal environments. Tracked as CVE-2026-9082, the vulnerability affects ...
CISA has given U.S. government agencies until Wednesday evening to secure their servers against an SQL injection vulnerability in the Drupal content management system (CMS) that it flagged as actively ...
Drupal has released security updates for a "highly critical" security vulnerability in Drupal Core that could be exploited by attackers to achieve remote code execution, privilege escalation, or ...
The Drupal Security Team is releasing patches for all supported core branches today, May 20, 2026, between 17:00 and 21:00 UTC — and every administrator of a Drupal-powered website should be at their ...
Administrators of the Drupal open source content management platform are rushing to install an emergency patch issued today to fix a “highly critical” SQL injection vulnerability in the application’s ...
The Drupal Security Team’s Monday PSA announcing the imminent patch for Drupal core doesn’t include any specifics, with the PSA noting that Drupal isn’t willing to share additional information until ...
Drupal has issued an alert stating that it intends to release a "core security release" for all supported branches on May 20, 2026, from 5-9 p.m. UTC. "The Drupal Security Team urges you to reserve ...
The open-source CMS Drupal receives a drag-and-drop editor, ready-made site templates, and optional AI functions for page generation with version 2.0. The Drupal Association has released a ...
The Drupal Association on Jan. 28 released Drupal CMS 2.0, introducing a visual page builder and AI-powered tools designed to let marketers create enterprise websites without developer assistance.