Drupal

Drupal releases patch for 'highly critical' remote code execution flaw that puts millions of sites at risk

Sites based on the CMS Drupal are at risk from a remote code execution flaw which has been classed as "highly critical". Site owners are being urged to install updates to ensure they are protected.

The security flaw -- CVE-2019-6340 or SA-CORE-2019-003 -- affects Drupal 8.5.x and 8.6.x but there are certain conditions that must be met in order for a site to be vulnerable.

By Sofia Elizabella Wyciślik-Wilson - February 22, 2019

Recent Headlines

Attackers target remote work and data storage

Drupal

Drupal releases patch for 'highly critical' remote code execution flaw that puts millions of sites at risk

Recent Headlines

Attackers target remote work and data storage

How AI is transforming the development lifecycle [Q&A]

Microsoft is making it faster and easier to add hyperlinks to Word

YouTube introduces new search filters with the option to avoid Shorts

WhatsApp is now trialing usernames in chats

Spotify gets even more social with Listening Activity feature

Google is giving Gmail and AI boost with new Gemini-powered features

Most Commented Stories

Ashampoo Burning Studio 2026 usually costs €30, but you can get it free

Anna’s Archive has its main domain suspended

WhatsApp is now trialing usernames in chats

Manjaro 26 makes a strong case for leaving Windows 11 behind

DuRoBo launches Krono, an Android-based ePaper hub for reading and writing

NuraLogix's Longevity Mirror uses a 30 second selfie to predict your future health

Cherry Xtrfy launches its first magnetic switch keyboards

Attackers target remote work and data storage

NEWS

UNITED STATES

UNITED KINGDOM

CANADA