Drupal has released security updates to address a vulnerability that does not affect Drupal core but may affect some contributed projects or custom code on Drupal sites. Exploitation of this vulnerability could allow a remote attacker to take control of an affected website.
CISA encourages users and administrators to review Drupal security advisory SA-CORE-010 and apply the necessary updates.
This product is provided subject to this Notification and this Privacy & Use policy.
Read more... CISA Current Activity