NEW YORK – If you’re running the Drupal Content Management System on any of your websites its time to ensure you’ve updated its core as soon as possible. On March 28, 2018, an announcement from Drupal detailing a severe core vulnerability was released.
The vulnerability allows an attacker to potentially compromise an entire site running most older and many newer versions of the CMS such as releases within versions 6, 7 and 8. There are a list upgrades and patches available which should be implemented now.
The security team has written an FAQ about the issue which includes the prediction that over one million sites using Drupal are affected with its risk-score being rated as Highly Critical. According to Internet technologies analytics site ‘BuiltWith’, Drupal is currently the second most popular CMS on the Internet.