CISA has given U.S. government agencies until Wednesday evening to secure their servers against an SQL injection vulnerability in the Drupal content management system (CMS) that it flagged as actively exploited. [...]
Multiple Systems
Exploit
BleepingComputer
Apply vendor security patch