CISA orders feds to patch actively exploited Drupal vulnerability
(bleepingcomputer.com)
1.
2.
Drupal: Critical SQL injection flaw now targeted in attacks
(bleepingcomputer.com)