Home / Tags / SQL Injection

#SQL Injection

1 Article tagged

[*] Filtering articles by tag: SQL Injection
[+] Matching entries: 1
root@sekurity:~# ls -la /tags/sql-injection/* _

[?] Related tags:

#InSEKurity #CVE #Drupal #PostgreSQL #JSON:API

CVE Research

May 26, 2026

sekurity-team

InSEKurity of the Week (CW21/2026): Drupal Core Anonymous SQL Injection (CVE-2026-9082)

An unauthenticated SQL injection in Drupal core's PostgreSQL EntityQuery handler -- anonymous attackers turn JSON object keys and JSON:API filter parameters into raw SQL fragments. Drupal-rated 23/25 'Highly Critical', CISA KEV, 15,000+ exploit attempts in 48 hours

#InSEKurity #CVE #Drupal +6

Exploit

root@sekurity:~# echo "End of results for tag: SQL Injection"
End of results for tag: SQL Injection
root@sekurity:~# _