[Tencent Cloud] 0 basic website template starting from 9 yuan! >>> 
For the second time in a month, popular open source content management system Drupal has warned of a new high-severity remote code execution vulnerability .
A new remote code execution vulnerability numbered CVE-2018-7602 , affecting Drupal 7.x and 8.x, potentially allows attackers to exploit multiple attack vectors to compromise websites that use Drupal.
The vulnerability is being exploited by attackers, and developers are urging websites that use the Drupal system to update to the latest version as quickly as possible. The developers did not disclose details of the vulnerability. At the end of last month, Drupal disclosed a very easy to exploit remote code execution vulnerability CVE-2018-7600, which has also been exploited by multiple groups to install miners and other malicious programs.
Source: Solidot