ZDNet

Drupal critical flaw: Patch this remote code execution bug urgently, websites warned

The bug was considered serious enough for Drupal's security team to warn admins a day in advance of Wednesday's patch release to reserve time to address the bug. Drupal is the third most popular CMS ...
ZDNet

Drupal calls on users to patch critical remote code execution vulnerabilities

Drupal has urged users to update their CMS to protect websites from critical security holes which could lead to hijacking and remote code execution. The Drupal content management system (CMS) powers ...
Threat Post

All Drupal Versions Susceptible to Code Execution, Credential Theft Vulnerabilities

A number of issues exist in the content management system Drupal that could lead to code execution and the theft of database credentials via a man-in-the-middle attack, a researcher warns. A number of ...
Bleeping Computer

Drupal issues emergency fix for critical bug with known exploits

Drupal has released emergency security updates to address a critical vulnerability with known exploits that could allow for arbitrary PHP code execution on some CMS versions. "According to the regular ...
heise online

Security updates for Drupal: Malicious code attacks on web browsers possible

Poor input validation makes previous versions of Drupal vulnerable. If the conditions are right, attackers can execute malicious code in the victim's web browser via compromised websites created with ...
ITWire

iTWire - Acquia releases Drupal mobile app source code

Announcing the release of the open source mobile app code, Acquia CTO and co-founder, Dries Buytaert, said the full Objective-C source code for Drupal Create was now available on GitHub, providing ...