#drupal-core

[ follow ]
#sql-injection #cve-2026-9082 #kev-catalog #web-application-security #security-updates #postgresql
Information security
fromThe Hacker News
1 week ago

Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV

CISA added CVE-2026-9082, a Drupal Core SQL injection flaw, to KEV due to active exploitation evidence, urging rapid patching across supported versions.
Information security
fromThe Hacker News
1 week ago

Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attacks

Drupal released security updates for a highly critical PostgreSQL-only Drupal Core vulnerability that can enable remote code execution, privilege escalation, or information disclosure.
[ Load more ]