The update mechanism of the popular Drupal content management system is insecure in several ways, allowing attackers to trick administrators into installing malicious updates. Researcher Fernando ...

This Drupal-powered site saw an unprecedented spike in traffic on April 18 (when the report was released) – by 7,000%! According to Federal Computer Week, over 580 million users had visited the site ...

Developers of popular open-source CMS Drupal are warning admins to immediately patch a flaw that an attacker can exploit just by visiting a vulnerable site. The bug affects all sites running on Drupal ...

The bug was considered serious enough for Drupal's security team to warn admins a day in advance of Wednesday's patch release to reserve time to address the bug. Drupal is the third most popular CMS ...

Drupal developers are urged to patch a bug that allows attackers to take over a site simply by visiting it. Drupal released a patch for a “highly critical” flaw in versions 6, 7 and 8 of its CMS ...

For the Georgia Technology Authority (GTA), the decision to dump its aging content management system (CMS) was easy. Running 65 state government websites on two different versions of proprietary ...

The Drupal CMS team has fixed a highly critical security flaw that allows hackers to take over a site just by accessing an URL. Drupal site owners should immediately —and we mean right now— update ...

Nearly a million websites running the popular Drupal content management system had only hours to update their software before attacks likely compromised the systems, thanks to a widespread ...

When it comes to open-source content management systems, Drupal really stands apart from Joomla and WordPress, its closest competitors, for several reasons. The payoff for using Drupal is the ...

Days after the team behind Drupal urged website admins to apply an update patching a highly critical vulnerability in the content management system (CMS) platform, threat actors were spotted ...