PC World

Drupal to secure its update process with HTTPS

Developers of the popular Drupal content management system are working to secure the software’s update mechanism after a researcher recently found weaknesses in it. Last week, researcher Fernando ...
PC World

Drupal sites at risk due to insecure update mechanism

The update mechanism of the popular Drupal content management system is insecure in several ways, allowing attackers to trick administrators into installing malicious updates. Researcher Fernando ...
ZDNet

Drupal critical flaw: Patch this remote code execution bug urgently, websites warned

The bug was considered serious enough for Drupal's security team to warn admins a day in advance of Wednesday's patch release to reserve time to address the bug. Drupal is the third most popular CMS ...
ZDNet

Update Drupal ASAP: Over a million sites can be easily hacked by any visitor

Developers of popular open-source CMS Drupal are warning admins to immediately patch a flaw that an attacker can exploit just by visiting a vulnerable site. The bug affects all sites running on Drupal ...
Threat Post

Drupal Update Fixes 10 Vulnerabilities, One Critical

Drupal addressed 10 vulnerabilities in the CMS this week, including a critical access bypass issue and another issue that could lead to remote code execution. Developers at Drupal addressed 10 ...