September 7th has passed and the Drupal 7 code freeze is officially on. 82 weeks of development that started in February 2008 has come and gone and now it's time to relax. Oh wait, no, you aren't that ...

The bug was considered serious enough for Drupal's security team to warn admins a day in advance of Wednesday's patch release to reserve time to address the bug. Drupal is the third most popular CMS ...

Drupal, Typo3 and Joomla are all impacted by the bug. Multiple content management systems – including Drupal, Joomla and Typo3 – are open to a vulnerability that can lead to arbitrary code execution ...

Drupal has urged users to update their CMS to protect websites from critical security holes which could lead to hijacking and remote code execution. The Drupal content management system (CMS) powers ...

Drupal has released emergency security updates to address a critical vulnerability with known exploits that could allow for arbitrary PHP code execution on some CMS versions. "According to the regular ...

Developers with the open source content management framework Drupal patched a series of highly critical remote code execution bugs in three separate modules today. If exploited, the bugs could let an ...

Malicious hackers wasted no time exploiting a critical bug in the Drupal content management system that allows them to execute malicious code on website servers. Just hours after maintainers of the ...

Sites that run the Drupal content management system run the risk of being hijacked until they’re patched against a vulnerability that allows hackers to remotely execute malicious code, managers of the ...

Poor input validation makes previous versions of Drupal vulnerable. If the conditions are right, attackers can execute malicious code in the victim's web browser via compromised websites created with ...