CVE-2026-9082 – Drupal

CVSS 9.8 CRITICAL

“A critical SQL injection bug can put Drupal-backed data and business operations at immediate risk.”

This patch addresses CVE-2026-9082 in Drupal core. The vulnerability allows SQL injection in affected Drupal core versions and can expose systems to serious data access, data modification, and service impact. The CVSS score is 9.8, which is Critical severity.

Active exploitation is confirmed, making this a high-urgency patch item for affected Drupal environments.

Key Details

Affected Product: Drupal Drupal
Attack Vector: Network
Attack Complexity: Low
Privileges Required: None
User Interaction: None
CWE Classification: CWE-89

Patch this CVE on all your endpoints in under 5 minutes. First 200 endpoints are free forever, scale as needed.

CVE-2026-9082 – Drupal

Key Details

Stay Tuned

PLATFORM

SOLUTIONS

RESOURCES

COMPANY

LEGAL

CONTACTS

+1-346-444-8530

Toll Free: 833-444-8530

708 Main St, 10th FL, Houston, TX 77002