Original release date: May 26, 2022

Drupal has released security updates to address a vulnerability that does not affect Drupal core but may affect some contributed projects or custom code on Drupal sites. Exploitation of this vulnerability could allow a remote attacker to take control of an affected website.

CISA encourages users and administrators to review Drupal security advisory SA-CORE-010 and apply the necessary updates.

This product is provided subject to this Notification and this Privacy & Use policy.


Source link

Author: CISA

Article used for cyber security disclosure.