Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV
Source: Thehackernews
Published:
<p>The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched critical security flaw impacting Drupal Core to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.</p> <p>The vulnerability in question is CVE-2026-9082 (CVSS sc