Threat Post

Drupal Patches Remote Code Execution Vulnerabilities in Three Modules

Drupal clarified Wednesday afternoon that for the vulnerability in Coder, the module does not have to be enabled in order to be exploited. That fix addresses a problem in which the module doesn’t ...
heise online

Security updates for Drupal: Malicious code attacks on web browsers possible

Poor input validation makes previous versions of Drupal vulnerable. If the conditions are right, attackers can execute malicious code in the victim's web browser via compromised websites created with ...
ZDNet

Drupal critical flaw: Patch this remote code execution bug urgently, websites warned

The bug was considered serious enough for Drupal's security team to warn admins a day in advance of Wednesday's patch release to reserve time to address the bug. Drupal is the third most popular CMS ...
CMS Wire

Acquia Releases Drupal Create Source Code for Building Native iOS Publishing Apps

What has to be one of the most difficult things for website owners to do is to create content from a mobile device -- any content producer will vouch for this painful reality. But while laptops and ...