![](https://i0.wp.com/krypteiagroup.com/wp-content/uploads/2022/06/CISA-06.jpg?resize=600%2C262&ssl=1)
https://www.cisa.gov/uscert/ncas/current-activity/2022/05/26/drupal-releases-security-updates
Drupal has released security updates to address a vulnerability that does not affect Drupal core but may affect some contributed projects or custom code on Drupal sites. Exploitation of this vulnerability could allow a remote attacker to take control of an affected website.
CISA encourages users and administrators to review Drupal security advisory SA-CORE-010 and apply the necessary updates.