Up to 12 million websites may be infiltrated by Drupal vulnerabilities.
Drupal, an open-source content management system, issued a warning. If a Patch Is Not Installed within seven hours after the security fix is released, the website using Drupal 7 can assume that they have been intruded by attackers. The automatic attack tool can exploit the vulnerability to control the website. Mark Stockley, an analyst at security company Sophos, said the warning was shocking. He estimates that there are about 1 billion websites around the world, 5.1% of which use Drupal to manage content. As many as 12 million websites require manual patching, most websites are unlikely to be patched in time. He believes that Drupal should not rely on users to install security updates, but should adopt automatic update push Security Correction. For example, Wordpress, another popular open-source content management system, uses automatic update and push patches.
Drupal details: click here
Drupal: click here
This article permanently updates the link address: