Symfony Flaw Leaves Drupal Sites Vulnerable

Popular content management software Drupal has released an updated version which patches a security bypass vulnerability allowing an attacker to gain control of a site by way of the Symfony HttpFoundation component (CVE-2018-14773). This affects Drupal versions before 8.5.6. Similar flaws were also discovered in the Zend Feed and Diactoros libraries included in the Drupal Core referred to as the ‘URL Rewrite Vulnerability’ which should be be updated directly.

Be sure to have your website administer update your Drupal website!

Latest News

Cyber Security & Locker Watcher Training – Restarting Soon!

Recent research shows that 1,861 people fall victim to online scams every minute, costing the global economy an estimated $600 Billion last year alone. Does your staff know what signs

March 16, 2021

HIPAA Back on Track – 10/18/19

Friday, October 18th – HIPAA Back on Track 9:00 AM to 12:00 PM (Instructor Julie Wells of Cap City) HIPAA Back on Track is interactive with the instructor answering your

October 18, 2019

Cyber Security & Locker Watcher Training – 09/20/19

Recent research shows that 1,861 people fall victim to online scams every minute, costing the global economy an estimated $600 Billion last year alone. Does your staff know what signs

September 20, 2019

HIPAA Security Officer Orientation – 09/20/19

Friday September 20th – HIPAA Security Officer Orientation 2:30 PM to 3:15 PM (Instructor Brad J. Primm Sr of 3C) Handouts will be provided. Attendance is limited so RSVP via