Threat Post

Drupal Patches Remote Code Execution Vulnerabilities in Three Modules

Drupal clarified Wednesday afternoon that for the vulnerability in Coder, the module does not have to be enabled in order to be exploited. That fix addresses a problem in which the module doesn’t ...
ZDNet

Drupal calls on users to patch critical remote code execution vulnerabilities

Drupal has urged users to update their CMS to protect websites from critical security holes which could lead to hijacking and remote code execution. The Drupal content management system (CMS) powers ...
PC World

Three popular Drupal modules get patches for site takeover flaws

The security team of the popular Drupal content management system worked with the maintainers of three third-party modules to fix critical vulnerabilities that could allow attackers to take over ...