Top
Critical Drupal vulnerability patched — update your website now

Critical Drupal vulnerability patched — update your website now

June 19, 2015

The Drupal Security Team has released a Critical software update for the Drupal CMS (Content Management System). Users with websites running either Drupal 6 or Drupal 7 are urged to upgrade immediately.

The advisory that explains what’s been fixed, DRUPAL-SA-CORE-2015-002, lists one Critical vulnerability in the OpenID module (CVE-2015-3234) alongside three vulnerabilities labelled Less Critical (CVE-2015-3232, CVE-2015-3233 and CVE-2015-3231).

Read More