PT-2026-43390 · Undefined · Undefined
Published
2026-05-26
·
Updated
2026-05-26
·
CVE-2025-50329
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
CISA added an actively exploited Drupal SQL injection to its KEV catalog and gave federal agencies until Wednesday evening to patch. If you're running Drupal in production and haven't patched CVE-2025-50329, you're exposed to trivial database compromise. No auth required.
#cybersecurity #infosec
https://t.co/DmPZlulBLM
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Undefined