Three popular Drupal modules patch site-takeover flaws

The security team of the popular Drupal content management system worked with the maintainers of three third-party modules to fix critical vulnerabilities that could allow attackers to take over websites.

The flaws allow attackers to execute rogue PHP code web servers that host Drupal websites with the RESTWS, Coder or Webform Multiple File Upload modules installed. These modules are not part of Drupal’s core, but are used by thousands of websites.

Tags:

Security

Story added 14. July 2016, content source with full text you can find at link above.

Comments are closed.

More antivirus and malware news?

Masters of disasters: IT survivors of Katrina, Sandy and other natural disasters share their DR tips and tricks
BlackCat Operators Distributing Ransomware Disguised as WinSCP via Malvertising
Staples confirms data breach investigation
Zendesk confirms cut-price $10.2B buyout
Microsoft slates first Windows 8, RT patches since launch
Australian Corporate Regulator Discloses Breach Involving Accellion Software
Top-secret defense document hoarder Harold Martin pleads guilty
Update: University Support Building 2 UPS maintenance work
Data Management Provider Skyflow Raises $17.5M
Facebook denies reports of major privacy breach

Three popular Drupal modules patch site-takeover flaws

More antivirus and malware news?

Ads

Security news

Malware

Security

IT security

About site

Search Terms Tips

Recent New Tips

Recent Posts