Drupal CVE-2026-9082 exploitation hit 15,000 attempts across 65 countries, forcing urgent patches by May 27, 2026.

The Drupal Security Team’s Monday PSA announcing the imminent patch for Drupal core doesn’t include any specifics, with the ...

Drupal released security updates for a highly critical Drupal Core vulnerability affecting sites that use PostgreSQL.

The Drupal Security Team is releasing patches for all supported core branches today, May 20, 2026, between 17:00 and 21:00 ...

Drupal has announced a "core security release" scheduled for later today, warning that threat actors might develop exploits ...

In its warning, Drupal said a vulnerability in this API allows an attacker to send specially crafted requests resulting in ...

The bug was considered serious enough for Drupal's security team to warn admins a day in advance of Wednesday's patch release to reserve time to address the bug. Drupal is the third most popular CMS ...

A critical security update for Drupal Core will be released on the evening of Wednesday, May 20. Admins should install it quickly.

Drupal released a security advisory to address a vulnerability affecting multiple Drupal core versions. A cyber threat actor could exploit this vulnerability to cause a denial-of-service condition.

HTTPArchive published real-world statistics of Core Web Vitals performance of major CMS platforms that showed many open source and commercial platforms making gains in Core Web Vitals performance. The ...

HTTP Archive (sister site to Archive.org aka Wayback Machine) published real-world statistics of which content management system (CMS) achieved the best Core Web Vitals scores. The results show that ...