back to article Drupal patches bad bugs

Drupal has patched two critical vulnerabilities in version 8 of the content management system. The bugs include a cross-site scripting flaw and another allowing non-admin but privileged users to download data configuration reports. Other flaws allowed some attackers to expose comments to different levels of visibility. …

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2022