Security Boulevard

CVE-2026-9082: Critical Drupal SQL Injection Vulnerability Affects PostgreSQL Deployments

A highly critical SQL injection vulnerability in Drupal core has raised concerns across organizations running PostgreSQL-backed Drupal environments. Tracked as CVE-2026-9082, the vulnerability affects ...
GitHub

Access checking must be explicitly specified on content entity queries

Introduced in branch/version: 9.2.x / 9.2.0 The \Drupal\Core\Entity\Query\QueryInterface::accessCheck() allows developers to specify whether only content entities that the current user has view access ...
GitHub

CVE-2026-9082: Drupal Core PostgreSQL EntityQuery SQL Injection #21509

Customer stories Events & webinars Ebooks & reports Business insights GitHub Skills ...