Critical SQL Injection Vulnerability in Drupal Core Actively Exploited

Critical SQL Injection Vulnerability in Drupal Core Actively Exploited

First seen 25 May 2026, 07:31 UTC ThehackernewsCybersecuritynewsGbhackersCsa.SgBleepingcomputer+1 87% similarity 80.2

Article Content

Browse articles
ThreatCluster

A critical SQL injection vulnerability (CVE-2026-9082) in Drupal Core has been identified, affecting multiple supported versions. The vulnerability, with a CVSS score of 9.8, allows unauthenticated attackers to execute arbitrary SQL queries, leading to potential information disclosure and privilege escalation. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has confirmed that this flaw is being actively exploited in the wild and has added it to its Known Exploited Vulnerabilities (KEV) catalog. Users of affected Drupal versions are urged to update immediately to the latest patched versions to mitigate risks. The vulnerability impacts Drupal core versions from 8.9.0 to 11.3.10. CISA's alert emphasizes the urgency of addressing this flaw to protect organizations from potential attacks.

Key Points: • CVE-2026-9082 is a critical SQL injection vulnerability in Drupal Core with a CVSS score of 9.8. • The vulnerability allows unauthenticated attackers to execute malicious SQL queries, risking data exposure. • CISA has confirmed active exploitation and added the vulnerability to its Known Exploited Vulnerabilities catalog.

ThreatCluster AI

Timeline

2026-05-20
CVE-2026-9082 published
A critical SQL injection vulnerability in Drupal Core was disclosed, affecting multiple versions.
Csa.Sg
2026-05-21
First public PoC released
A proof of concept for the SQL injection vulnerability was made publicly available, increasing risk.
Date unknown
2026-05-22
CVE added to CISA KEV catalog
CISA added CVE-2026-9082 to its Known Exploited Vulnerabilities catalog due to active exploitation.
Thehackernews
2026-05-25
CISA issues urgent alert
CISA warned organizations about the active exploitation of the SQL injection vulnerability in Drupal Core.
Cybersecuritynews
2026-05-26
Security update released
Drupal security team released updates to patch the critical SQL injection vulnerability, urging immediate application.
Csa.Sg

Community

Browse all →