The Drupal CMS team has fixed a highly critical security flaw that allows hackers to take over a site just by accessing an URL. Drupal site owners should immediately —and we mean right now— update ...

Drupal, the popular open-source content management system used by hundreds of thousands of blogs and websites, has reset the passwords of its Drupal.org users following a data security breach of the ...

Drupal has issued a security update which resolves three security flaws, two of which are deemed critical. Earlier this week, the open-source website content management system (CMS) released a ...

Drupal has released a security update to address a critical vulnerability in a third-party library with documented or deployed exploits available in the wild. "The Drupal project uses the pear Archive ...

Earlier this month at Drupalcon, the Drupal Security Team held a Birds of a Feather (BOF) session on how to improve communication. One of the outcomes was to make it clearer which security advisories ...

The Drupal project, which manages development of the content management system of the same name, reset passwords for nearly 1 million users on May 29 after its security team discovered that the site ...

The message today to the millions of users of WordPress and Drupal content management systems: Fire up those security updates. The web content management system (CMS) providers released security ...

The Drupal Association explained in a notice that hackers were able to get into the system via a known vulnerability inside third-party software that was installed on the Drupal.org server ...

Drupal issued a security advisory of four critical vulnerabilities rated from moderately critical to critical. The vulnerabilities affect Drupal versions 9.3 and 9.4. The security advisory warned that ...