Original release date: April 19, 2017
Drupal has released an advisory to address a vulnerability in Drupal core 8.x versions prior to 8.2.8 and 8.3.1. A remote attacker could exploit this vulnerability to obtain sensitive information.
US-CERT encourages users and administrators to review Drupal’s Security Advisory and upgrade to 8.2.8 or 8.3.1.
This product is provided subject to this Notification and this Privacy & Use policy.
from US-CERT Current Activity http://bit.ly/2oX4MCv
via US-CERT Current Activity http://ift.tt/1Btyqkb Stay safe *”This link is provided for informational purposes only and does not represent an endorsement by or affiliation with the US-CERT (DHS)