{ads}

Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV

Written By Saturday, 23 May 2026 Add Comment



May 23, 2026 at 12:53PM

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched critical security flaw impacting Drupal Core to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerability in question is CVE-2026-9082 (CVSS score: 6.5), an SQL injection vulnerability affecting all supported versions of Drupal Core. "Drupal Core

from The Hacker News https://ift.tt/w6Dn1cz

0 Response to "Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads