Developers of Drupal recently patched two critical vulnerabilities this week in its content management system platform. The first critical vulnerability is a comment reply form bug in Drupal version 8 that granted unauthorized users access to restricted content. It allowed them to view and add comments as well as content in within restricted areas. The another vulnerability that was in Drupal 7 and 9 were a Javascript function that lead to a cross-site-scripting vulnerability.
Drupal Patches Critical Bug That Leaves Platform Open to XSS Attack
Leave a Reply
You must be logged in to post a comment.