{"vulnerability": "cve-2026-9082", "sightings": [{"uuid": "9c264205-2687-44d3-b0f8-4b01d6467948", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://infosec.exchange/users/decio/statuses/116611187676539432", "content": "Si votre CMS est un #Drupal, ou si vous connaissez quelqu\u2019un qui administre un site Drupal : c\u2019est le moment de v\u00e9rifier la version. \nLa faille CVE-2026-9082 touche Drupal Core avec base PostgreSQL : injection SQL critique, exploitable sans compte, pouvant mener \u00e0 fuite de donn\u00e9es, \u00e9l\u00e9vation de privil\u00e8ges voire RCE selon le contexte.\n\u00c0 corriger en priorit\u00e9 :Drupal 10.5 \u2192 10.5.10Drupal 10.6 \u2192 10.6.9Drupal 11.2 \u2192 11.2.12Drupal 11.3 \u2192 11.3.10\nMySQL/MariaDB ne semblent pas concern\u00e9s par cette SQLi, mais les mises \u00e0 jour incluent aussi Symfony/Twig : patch recommand\u00e9 pour tout le monde.\ud83d\udc47 https://www.drupal.org/sa-core-2026-004\n\"Drupal \u2013 CVE-2026-9082 : cette faille critique de type injection SQL menace les sites Web\"\ud83d\udc47 https://www.it-connect.fr/drupal-cve-2026-9082-cette-faille-critique-de-type-injection-sql-menace-les-sites-web/\n\ud83d\udd0d (\u00e0 noter la diff entre estimation LLM VLAI et attribution CVSS officielle en Medium)\ud83d\udc47 https://vulnerability.circl.lu/vuln/CVE-2026-9082\n\ud83d\udcac \u2b07\ufe0f https://infosec.pub/\n#CyberVeille #CVE_2026_9082", "creation_timestamp": "2026-05-21T06:38:40.457623Z"}, {"uuid": "a85a2eb9-f7c8-4eee-908a-885f16520ce3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mmdtvqkkx62z", "content": "Drupal Core patched CVE-2026-9082, a critical PostgreSQL-only flaw that could enable SQL injection, privilege escalation, info disclosure, and even remote code execution on affected sites. #Drupal #PostgreSQL #CVE20269082", "creation_timestamp": "2026-05-21T07:00:25.926169Z"}, {"uuid": "f94d6f44-eb61-44d4-844f-b652af4cfe95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://thehackernews.com/2026/05/highly-critical-drupal-core-flaw.html", "content": "Drupal has released security updates for a \"highly critical\" security vulnerability in Drupal Core that could be exploited by attackers to achieve remote code execution, privilege escalation, or information disclosure.\nThe vulnerability, now tracked as CVE-2026-9082, carries a CVSS score of 6.5 out of 10.0, per CVE.org. Drupal said the vulnerability resides in a database abstraction API that is", "creation_timestamp": "2026-05-21T01:44:11.000000Z"}, {"uuid": "6d3c44bd-9810-46b7-9e9b-88a1a9d60323", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://gist.github.com/alon710/f82b2c773fad7c904278334fb63b3ad5", "content": "# CVE-2026-9082: CVE-2026-9082: Unauthenticated SQL Injection in Drupal Core PostgreSQL Driver\n\n> **CVSS Score:** 6.5\n> **Published:** 2026-05-20\n> **Full Report:** https://cvereports.com/reports/CVE-2026-9082\n\n## Summary\nDrupal Core contains a highly critical SQL injection vulnerability (CVE-2026-9082) within its Database Abstraction API. The flaw specifically affects installations using the PostgreSQL database backend, allowing unauthenticated attackers to execute arbitrary SQL commands via crafted array keys in filter parameters.\n\n## TL;DR\nUnauthenticated SQL injection in Drupal Core's PostgreSQL driver allows full database compromise and potential remote code execution via crafted JSON:API or search queries.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-89\n- **Attack Vector**: Network (Unauthenticated)\n- **CVSS v3.1 Score**: 6.5\n- **Drupal Risk Score**: 20/25 (Highly Critical)\n- **Exploit Status**: PoC Available\n- **KEV Status**: Not Listed\n\n## Affected Systems\n\n- Drupal Core 8.9.x to 10.4.9 (with PostgreSQL)\n- Drupal Core 10.5.0 to 10.5.9 (with PostgreSQL)\n- Drupal Core 10.6.0 to 10.6.8 (with PostgreSQL)\n- Drupal Core 11.0.0 to 11.1.9 (with PostgreSQL)\n- Drupal Core 11.2.0 to 11.2.11 (with PostgreSQL)\n- Drupal Core 11.3.0 to 11.3.9 (with PostgreSQL)\n- **Drupal Core**: 8.9.0 - 10.4.9 (Fixed in: `10.4.10`)\n- **Drupal Core**: 10.5.0 - 10.5.9 (Fixed in: `10.5.10`)\n- **Drupal Core**: 10.6.0 - 10.6.8 (Fixed in: `10.6.9`)\n- **Drupal Core**: 11.0.0 - 11.1.9 (Fixed in: `11.1.10`)\n- **Drupal Core**: 11.2.0 - 11.2.11 (Fixed in: `11.2.12`)\n- **Drupal Core**: 11.3.0 - 11.3.9 (Fixed in: `11.3.10`)\n\n## Mitigation\n\n- Apply official Drupal Core security patches immediately\n- Revoke PostgreSQL SUPERUSER privileges from the Drupal database user\n- Deploy WAF rules to filter PostgreSQL-specific syntax from incoming requests\n\n**Remediation Steps:**\n1. Identify the current Drupal Core version via the Composer lockfile\n2. Run `composer update drupal/core drupal/core-recommended` to install the patched release\n3. Verify the PostgreSQL database user permissions using `\\du` in the psql console\n4. Configure SIEM and WAF to monitor for `pg_sleep` and `COPY FROM PROGRAM` patterns\n\n## References\n\n- [Official Drupal Advisory (SA-CORE-2026-004)](https://www.drupal.org/sa-core-2026-004)\n- [CVE-2026-9082 at CVE.org](https://www.cve.org/CVERecord?id=CVE-2026-9082)\n- [NVD Record](https://nvd.nist.gov/vuln/detail/CVE-2026-9082)\n- [GitHub PoC Repository (lysophavin18)](https://github.com/lysophavin18/cve-2026-9082)\n- [GitHub PoC Repository (HORKimhab)](https://github.com/HORKimhab/CVE-2026-9082)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-9082) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-05-21T07:10:50.000000Z"}, {"uuid": "d914aa1a-4900-4012-a2af-27be9e136a9b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://swecyb.com/ap/users/116080658609901341/statuses/116611627224896861", "content": "(kudelskisecurity.com) Highly Critical SQL Injection Vulnerability in Drupal Core Affecting PostgreSQL Backends (CVE-2026-9082)\nNew highly critical unauthenticated SQLi in Drupal Core (CVE-2026-9082) enables RCE on PostgreSQL backends. Immediate patching required.\nIn brief - CVE-2026-9082 is a highly critical unauthenticated SQL injection flaw in Drupal Core affecting PostgreSQL backends. Attackers can execute arbitrary SQL, escalate privileges, or achieve RCE without authentication. Drupal rates this 19/25 and urges immediate patching.\nTechnically - CVE-2026-9082 stems from improper input validation in Drupal\u2019s core API when interacting with PostgreSQL. Attackers can manipulate SQL queries via crafted requests, leading to data exposure, credential theft, or RCE. Exploitation requires no authentication, has low complexity, and affects core functionality. Patches are available for all supported versions.\nSource: https://kudelskisecurity.com/research/critical-drupal-core-sql-injection-vulnerability\n#Cybersecurity #ThreatIntel", "creation_timestamp": "2026-05-21T08:45:33.961838Z"}, {"uuid": "819274b7-cb32-46d4-bd2f-f3f98e25d57a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://t.me/GithubRedTeam/85150", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a cve-2026-9082\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a lysophavin18\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Unknown\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-21 04:31:25\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\ncve poc\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-21T05:00:06.000000Z"}, {"uuid": "79abc78b-9314-45ad-8bf6-ffd426630f5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mmdtasgidf2a", "content": "Drupal Core\u306bDB\u62bd\u8c61\u5316API\u306e\u8106\u5f31\u6027(CVE-2026-9082)\u304c\u3042\u308a\u3001PostgreSQL\u74b0\u5883\u3067\u30ea\u30e2\u30fc\u30c8\u30b3\u30fc\u30c9\u5b9f\u884c\u7b49\u306e\u653b\u6483\u304c\u53ef\u80fd\u3002", "creation_timestamp": "2026-05-21T06:48:43.052596Z"}, {"uuid": "ecbd9b6b-0fcc-4347-b839-0f0c54be9aa2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mmebn7z5op2p", "content": "CVE-2026-9082 enables unauthenticated arbitrary SQL injection on Drupal sites using PostgreSQL, potentially leading to privilege escalation and remote code execution.\n", "creation_timestamp": "2026-05-21T11:06:12.257620Z"}, {"uuid": "6db0a6cc-e447-4ffe-9b7f-dc4dd2af5f1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://www.cert.at/de/warnungen/2026/5/kritische-sicherheitslucke-in-drupal-core-updates-verfugbar", "content": "20. Mai 2026\n\nBeschreibung\n\nIn Drupal Core existiert eine SQL-Injection-Schwachstelle in der Datenbank-Abstraktions-API. Speziell gestaltete Anfragen können zu beliebigen SQL-Injections führen. Die Schwachstelle ist ausschließlich für Drupal-Installationen relevant, die PostgreSQL als Datenbank einsetzen, und kann ohne Authentifizierung durch anonyme Benutzer:innen ausgenutzt werden.\n\nZusätzlich zur SQL-Injection enthalten die Drupal-Releases für die unterstützten Versionszweige (11.3, 11.2, 10.6 und 10.5) auch Sicherheitsaktualisierungen für die Abhängigkeiten Symfony und Twig. Diese Abhängigkeits-Updates betreffen unabhängig von der eingesetzten Datenbank alle Drupal-Installationen.\n\nCVE-Nummer(n): CVE-2026-9082\n\nCVSS Base Score: N/A\n\nAuswirkungen\n\nAngreifer:innen können ohne Authentifizierung speziell gestaltete Anfragen senden und so beliebigen SQL-Code ausführen. Mögliche Folgen sind die Offenlegung von Informationen sowie in bestimmten Konstellationen Privilegieneskalation, Remote Code Execution oder weitere Angriffe.\n\nAuch wenn die SQL-Injection nur PostgreSQL-Installationen betrifft, sind durch die mitveröffentlichten Updates für Symfony und Twig je nach Konfiguration und eingesetzten Contrib-Modulen alle Drupal-Sites potenziell von weiteren Schwachstellen betroffen.\n\nBetroffene Systeme\n\nDrupal Core in folgenden Versionsbereichen:\n\n\n\nDrupal 11.3.x: Versionen vor 11.3.10\n\nDrupal 11.2.x: Versionen vor 11.2.12\n\nDrupal 11.1.x und 11.0.x: Versionen vor 11.1.10 (End-of-Life)\n\nDrupal 10.6.x: Versionen vor 10.6.9\n\nDrupal 10.5.x: Versionen vor 10.5.10\n\nDrupal 10.4.x und frühere 10er-Versionen: vor 10.4.10 (End-of-Life)\n\nDrupal 9.x: alle Versionen (End-of-Life)\n\nDrupal 8.9.x: alle Versionen (End-of-Life)\n\n\nAbhilfe\n\nDrupal stellt für die unterstützten Versionszweige folgende Sicherheitsaktualisierungen bereit:\n\n\n\nDrupal 11.3.x: Update auf 11.3.10\n\nDrupal 11.2.x: Update auf 11.2.12\n\nDrupal 10.6.x: Update auf 10.6.9\n\nDrupal 10.5.x: Update auf 10.5.10\n\n\nFür nicht mehr unterstützte Minor-Branches wurden ausschließlich zur Behebung dieser Schwachstelle gezielte Versionen veröffentlicht:\n\n\n\nDrupal 11.1.x und 11.0.x: Update auf 11.1.10\n\nDrupal 10.4.x und frühere 10er-Versionen: Update auf 10.4.10\n\n\nAufgrund der Schwere der Schwachstelle stellt Drupal zusätzlich manuell anzuwendende Patches für die End-of-Life-Versionen Drupal 9.5 und Drupal 8.9 bereit. CERT.at empfiehlt für diese Versionen mittelfristig eine Migration auf einen unterstützten Versionszweig.\n\nSites, die Drupal Steward einsetzen, sind laut Hersteller bereits vor bekannten Angriffsvektoren geschützt; die Aktualisierung sollte dennoch zeitnah erfolgen.\n\nDa die Aktualisierungen auch Symfony und Twig betreffen, wird empfohlen zu überprüfen, welche Benutzerrollen Twig-Templates aktualisieren können (etwa über Views oder Contrib-Module).\n\nHinweis\n\nGenerell empfiehlt CERT.at, sämtliche Software aktuell zu halten und dabei insbesondere auf automatische Updates zu setzen. Regelmäßige Neustarts stellen sicher, dass diese auch zeitnah aktiviert werden.\n\n\n\nInformationsquelle(n)\n\nDrupal core - Highly critical - SQL injection - SA-CORE-2026-004 (Englisch)https://www.drupal.org/sa-core-2026-004\n\nUpcoming highly critical release on May 20, 2026 - PSA-2026-05-18 (Englisch)https://www.drupal.org/psa-2026-05-18\n\nVorankündigung: Kritische Sicherheitslücke in Drupal Core - Patch-Verfügbarkeit am 20. Mai 2026 (Deutsch)https://www.cert.at/de/aktuelles/2026/5/drupal-critical-preannounce", "creation_timestamp": "2026-05-20T18:43:04.000000Z"}, {"uuid": "27b0077d-8534-4b64-ac1d-dc095349dc51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116612335318592781", "content": "\ud83d\udea8 Drupal sites using PostgreSQL face a highly critical SQL injection vuln (CVE-2026-9082), risking RCE & data exposure. Patch versions 11.3, 11.2, 10.6, 10.5.x ASAP. Update Symfony & Twig too. No active exploitation yet. https://radar.offseq.com/threat/drupal-patches-highly-critical-vulnerability-expos-a1486e66 #OffSeq #Drupal #SQLInjection #Infosec", "creation_timestamp": "2026-05-21T11:30:27.615194Z"}, {"uuid": "ac374916-578d-4ddb-8b80-fb08e3ac7fd6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://t.me/GithubRedTeam/85199", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-9082-Drupal-PoC\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a 7h30th3r0n3\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-21 10:42:38\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nDrupal Core PostgreSQL SQL Injection PoC - CVE-2026-9082. Ethical PoC for the Drupal vulnerability allowing anonymous SQL injection through the JSON:API module on PostgreSQL-backed sites.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-21T11:00:04.000000Z"}, {"uuid": "4cb9b4f6-f66e-4355-9f56-a1c96e3504d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmefrgg5ee2q", "content": "\ud83d\udd17 CVE : CVE-2026-9082", "creation_timestamp": "2026-05-21T12:20:07.723240Z"}, {"uuid": "d377b9db-d8a7-471f-82d2-9a57ee0e162f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mmelom5opvv2", "content": "CVE-2026-9082: Highly Critical SQL Injection Vulnerability in Drupal Core (SA-CORE-2026-004) A highly critical SQL injection vulnerability in Drupal core's database abstraction layer affects si...\n\n\nOrigin | Interest | Match", "creation_timestamp": "2026-05-21T14:06:45.503299Z"}, {"uuid": "e2ce5169-a14b-49a5-adcf-516922c16300", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mmet6rlwckz2", "content": "CVE-2026-9082: Highly Critical SQL Injection Vulnerability in Drupal Core (SA-CORE-2026-004) A highly critical SQL injection vulnerability in Drupal core's database abstraction layer affects si...\n\n\nOrigin | Interest | Match", "creation_timestamp": "2026-05-21T16:20:23.151421Z"}, {"uuid": "1c411a0d-a965-4f48-a520-82eadacd6ddc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/85288", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-9082\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a ywh-jfellus\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-21 21:45:53\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nPoC for CVE-2026-9082 (Drupal SA-CORE-2026-004) Drupal Core SQLi\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-21T22:00:04.000000Z"}, {"uuid": "513426fa-a7bf-4aa6-8781-3e92b675a8be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mmebwavli72b", "content": "Drupal\u30b3\u30a2\u306e\u91cd\u5927\u306a\u8106\u5f31\u6027\u304cWeb\u30b5\u30a4\u30c8\u3092\u653b\u6483\u306b\u3055\u3089\u3059\n\nDrupal\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30c1\u30fc\u30e0\u306fSA-CORE-2026-004\u3092\u6b63\u5f0f\u306b\u30ea\u30ea\u30fc\u30b9\u3057\u3001\u307b\u307c\u3059\u3079\u3066\u306e\u30b5\u30dd\u30fc\u30c8\u304a\u3088\u3073\u30ec\u30ac\u30b7\u30fc\u30d0\u30fc\u30b8\u30e7\u30f3\u306eDrupal\u30b3\u30a2\u306e\u30c7\u30fc\u30bf\u30d9\u30fc\u30b9\u62bd\u8c61\u5316API\u5168\u4f53\u306b\u5f71\u97ff\u3092\u4e0e\u3048\u308b\u3001\u6975\u3081\u3066\u91cd\u5927\u306aSQL\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u8106\u5f31\u6027\uff08CVE-2026-9082\uff09\u306b\u30d1\u30c3\u30c1\u3092\u5f53\u3066\u307e\u3057\u305f\u3002 Drupal\u306e\u91cd\u5927\u5ea6\u30b9\u30b1\u30fc\u30eb\u30672", "creation_timestamp": "2026-05-21T11:11:15.124342Z"}, {"uuid": "d777dc1f-ad32-45c7-886d-bd6b7be7b316", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/PostgreSQL.activitypub.awakari.com.ap.brid.gy/post/3mmeckd332ry2", "content": "InfoSec News Nuggets 05/21/2026 Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attacks Drupal released security updates for CVE-2026-9082, a highly critical flaw affecting sites t...\n\n#InfoSec #News #Nuggets #7-Eleven #AboutDFIR #news #nuggets #Webworm\n\nOrigin | Interest | Match", "creation_timestamp": "2026-05-21T11:22:31.480353Z"}, {"uuid": "41a316f7-e5a2-4747-bcdf-5ed752769c31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mmg2rlxlsc2k", "content": "~Akamai~\nA critical SQL injection flaw in Drupal core using PostgreSQL allows unauthenticated attackers to exfiltrate data via PHP array keys.\n-\nIOCs: CVE-2026-9082\n-\n#Drupal #SQLi #ThreatIntel", "creation_timestamp": "2026-05-22T04:08:42.142111Z"}, {"uuid": "0322adec-6b20-4658-bee3-08bcc3868f57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "Telegram/9fynAvsVP-ryw-SKfWjVFwiJhiBgYttKjRaOpT5XuJai4A", "content": "", "creation_timestamp": "2026-05-21T06:35:58.000000Z"}, {"uuid": "f6970da4-5f91-4ae4-a849-57feaffde1db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/r-netsec-bot.bsky.social/post/3mmh5fcqsc72q", "content": "Keys to the Kingdom: Anonymous SQL Injection in Drupal Core (CVE-2026-9082)", "creation_timestamp": "2026-05-22T14:28:11.156277Z"}, {"uuid": "11bba028-1672-4a38-8e47-6faf1848cb44", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3mmgpmdtz3h2l", "content": "[RSS] CVE-2026-9082 | Drupal SQL Injection Vulnerability\n\n\n horizon3.ai -> \n\n\nOriginal->", "creation_timestamp": "2026-05-22T10:21:34.302969Z"}, {"uuid": "25e835f3-36b5-4e24-ad3a-cc0740109e3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/diesec.bsky.social/post/3mmgrr6mvdq2j", "content": "CVE-2026-9082 \u2014 Drupal SQL injection, no authentication required. PostgreSQL sites in certain configurations at risk of full RCE.\n\nHighly critical (20/25). Exploits expected within hours of patch release.\n\nDrupal 10.5\u201311.3. Patch now.\n\n #CyberSecurity #Drupal #CVE20269082", "creation_timestamp": "2026-05-22T11:00:04.345523Z"}, {"uuid": "b3cb99a4-451d-4e57-8c89-3917fef7c0dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/bearstech.com/post/3mmgydql4dk2p", "content": "Faille Drupal critique : injection SQL via PostgreSQL (CVE-2026-9082)\n\n\ud83d\udc49 www.cert.ssi.gouv.fr...", "creation_timestamp": "2026-05-22T12:57:49.559227Z"}, {"uuid": "477b89f3-90b6-4caa-9a6e-77d0a6a967f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/r-netsec.bsky.social/post/3mmh7pcipvg2z", "content": "Keys to the Kingdom: Anonymous SQL Injection in Drupal Core (CVE-2026-9082)", "creation_timestamp": "2026-05-22T15:09:33.517132Z"}, {"uuid": "6a79098b-1de4-4584-860b-8c8294ef7340", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-9082.yaml", "content": "", "creation_timestamp": "2026-05-21T21:02:38.000000Z"}, {"uuid": "2a46582d-de7f-48d1-9748-2b58ef3db91a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://t.me/bdufstecru/3188", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0430 \u044f\u0434\u0440\u0430 CMS-\u0441\u0438\u0441\u0442\u0435\u043c\u044b Drupal \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u043f\u0440\u0438\u043d\u044f\u0442\u0438\u0435\u043c \u043c\u0435\u0440 \u043f\u043e \u0437\u0430\u0449\u0438\u0442\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u0437\u0430\u043f\u0440\u043e\u0441\u0430 SQL. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434\n\nBDU:2026-07114\nCVE-2026-9082\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://www.drupal.org/sa-core-2026-004", "creation_timestamp": "2026-05-22T13:23:08.000000Z"}, {"uuid": "3e2e993f-9970-4a68-b679-5d0cdf407818", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mmhkwfhgvm2y", "content": "Drupal warns CVE-2026-9082 is already seeing exploit attempts. The flaw can let unauthenticated attackers inject SQL on PostgreSQL sites, with more than 15,000 probes across nearly 6,000 sites. #Drupal #PostgreSQL #Imperva", "creation_timestamp": "2026-05-22T18:30:23.126030Z"}, {"uuid": "807f0d9c-efac-4fb6-b7f1-5d53c0b1fd97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://t.me/xakep_ru/19418", "content": "\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0431\u0430\u0433 \u0432 Drupal \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u0434\u0430\n\n\u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 Drupal \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u044d\u043a\u0441\u0442\u0440\u0435\u043d\u043d\u044b\u0435 \u043f\u0430\u0442\u0447\u0438 \u0434\u043b\u044f \u00ab\u0432\u044b\u0441\u043e\u043a\u043e\u043a\u0440\u0438\u0442\u0438\u0447\u043d\u043e\u0439\u00bb \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 Drupal Core, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0441\u0430\u0439\u0442\u044b, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0449\u0438\u0435 PostgreSQL. \u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0430 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440 CVE-2026-9082 \u0438 \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 SQL-\u0438\u043d\u044a\u0435\u043a\u0446\u0438\u0435\u0439, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0432 \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0441\u0446\u0435\u043d\u0430\u0440\u0438\u044f\u0445 \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u0434\u0430.\n\nhttps://xakep.ru/2026/05/22/drupal-injection/", "creation_timestamp": "2026-05-22T16:43:16.000000Z"}, {"uuid": "abf6aeb6-092a-4c3b-823f-765f71f6e492", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/drupal-security-advisory-av26-492", "content": "", "creation_timestamp": "2026-05-22T08:49:56.000000Z"}, {"uuid": "da98b3cf-02c8-4f3c-9a2e-b4f7a346fe48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mmhd6h3yn32k", "content": "~Cybergcca~\n6 advisories released, highlighting a highly critical Drupal SQL injection (CVE-2026-9082) exploited in the wild and critical F5 NGINX flaws.\n-\nIOCs: CVE-2026-9082, CVE-2026-9256\n-\n#CVE20269082 #Drupal #ThreatIntel #Vulnerability", "creation_timestamp": "2026-05-22T16:11:43.057870Z"}, {"uuid": "8ce46636-d612-4d3a-89e2-fd1f388767f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mmhf2pjr322d", "content": "Drupal says attackers are actively exploiting CVE-2026-9082, a critical unauthenticated SQL injection flaw in its database API. Successful attacks could enable remote code execution. #Drupal #PostgreSQL #CVE20269082", "creation_timestamp": "2026-05-22T16:45:25.449638Z"}, {"uuid": "716e91b8-042b-401b-9c0d-2ea2e097694f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/thenerdy.one/post/3mmhkzieouk2n", "content": "How it feels heading into the long weekend with CVE-2026-9082 just getting posted two days ago - www.drupal.org/sa-core-2026...", "creation_timestamp": "2026-05-22T18:32:07.943178Z"}, {"uuid": "a093caad-8d24-4b8b-b33f-739631c3084c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/aegisbot.bsky.social/post/3mmhlcgr2r42v", "content": "\ud83d\udd0d Top signals this week:\n\nCVEs: CVE-2026-20182, CVE-2026-42897, CVE-2026-45585, CVE-2026-42945, CVE-2026-9082\nActors: Ransomware, Apt, Play\n\nFull intel: https://matlock.ca/cybersecnews", "creation_timestamp": "2026-05-22T18:37:07.064628Z"}, {"uuid": "4bc7c7ea-c2ae-4efa-b3c5-03dbbfe663b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/technoholic.bsky.social/post/3mmhoav7d2m2n", "content": "Drupal released security updates for CVE-2026-9082, a critical flaw (CVSS 6.5) in Core. It could allow remote code execution, privilege escalation, or data leaks. Update now!", "creation_timestamp": "2026-05-22T19:29:56.326985Z"}, {"uuid": "73165e1e-c07b-4328-88d2-54202948848f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/cvesentinel.bsky.social/post/3mmhm3wecgd2g", "content": "\ud83d\uded1 CVE-2026-9082\nDrupal Core\nCVSS 6.5 / EPSS 0% / KEV\nTL;DR: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerabi\u2026\nhttps://cvesentinel.replit.app/report/CVE-2026-9082?utm_source=bluesky&utm_medium=social&utm_campaign=cvesentinel\n#infosec #CVE #vulnerability", "creation_timestamp": "2026-05-22T18:51:21.490361Z"}, {"uuid": "1d1ef2c2-f8bf-48a4-9ad3-d35315657782", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mmhq6aua3r26", "content": "~Cisa~\nCISA added actively exploited Drupal Core SQL injection flaw (CVE-2026-9082) to the KEV catalog.\n-\nIOCs: CVE-2026-9082\n-\n#CVE20269082 #Drupal #ThreatIntel", "creation_timestamp": "2026-05-22T20:04:14.975816Z"}, {"uuid": "42c220d5-93ca-4b63-9385-cdb6239d5b03", "vulnerability_lookup_origin": "405284c2-e461-4670-8979-7fd2c9755a60", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/8992ce92-eb4a-4fd7-a803-3cd5829cabe6", "content": "", "creation_timestamp": "2026-05-22T19:00:01.389292Z"}, {"uuid": "dd058b30-6387-49c4-949b-542dd301def0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mmhho2766o2s", "content": "Drupal detects active exploitation attempts for CVE-2026-9082, a PostgreSQL-backed SQL injection flaw, and warns that attackers may quickly escalate from probing to impact.\n", "creation_timestamp": "2026-05-22T17:32:01.394047Z"}, {"uuid": "db5f58ba-db66-49d3-97e5-61c528f37d9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/6556723", "content": "2026-05-22: [CVE-2026-9082] Drupal Core SQL Injection VulnerabilityDrupal Core contains a SQL injection vulnerability that could allow for privilege escalation and remote code execution via specially crafted requests sent with the database abstraction API.\ncisakev", "creation_timestamp": "2026-05-22T19:03:43.029127Z"}, {"uuid": "ed13ba7a-797f-4e81-9504-f36c2f9e3ed0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mmhj5utpdck2", "content": "Drupal Vulnerability in Hacker Crosshairs Shortly After Disclosure Drupal is warning users that it has already seen attempts to exploit CVE-2026-9082 and security firms are seeing attacks against t...\n\n#Vulnerabilities #Drupal #exploited #Featured\n\nOrigin | Interest | Match", "creation_timestamp": "2026-05-22T17:58:51.704932Z"}, {"uuid": "a0932333-0f57-4145-9257-09b6b3527947", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "exploited", "source": "Telegram/R_EugWNY3bQWcJG5dkeCJ-pbWtdO0Y_OgKUPVf0ljlf8nRiD", "content": "", "creation_timestamp": "2026-05-23T17:25:05.000000Z"}, {"uuid": "2c8e9b74-1fd2-48e8-98f2-73faf81777fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://thehackernews.com/2026/05/drupal-core-sql-injection-bug-actively.html", "content": "The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched critical security flaw impacting Drupal Core to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.\n\nThe vulnerability in question is CVE-2026-9082 (CVSS score: 6.5), an SQL injection vulnerability affecting all supported versions of Drupal Core.\n\n\"Drupal Core", "creation_timestamp": "2026-05-23T05:23:48.000000Z"}, {"uuid": "f913d158-c076-4fa7-b1e1-6b0854466ac7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/bugxhunter.bsky.social/post/3mmhwolxtue2s", "content": "\ud83d\udd0d Drupal Core SQL Injection Vulnerability Added to KEV Catalog\n\n\ud83d\udcdd Drupal Core CVE-2026-9082 exploited, poses significant risk to federal networks.\n\nhttps://www.cisa.gov/news-events/alerts/2026/05/22/cisa-adds-one-known-exploited-vulnerability-catalog\n\n\ud83d\udcf0 Alerts\n\n#CVE #ZeroDay", "creation_timestamp": "2026-05-22T22:00:45.513128Z"}, {"uuid": "6fa44af5-f0af-4ad3-a24b-1c76ba7a064d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "exploited", "source": "https://t.me/information_security_channel/55294", "content": "Drupal Vulnerability in Hacker Crosshairs Shortly After Disclosure\nhttps://www.securityweek.com/drupal-vulnerability-in-hacker-crosshairs-shortly-after-disclosure/\n\nDrupal is warning users that it has already seen attempts to exploit CVE-2026-9082 and security firms are seeing attacks against thousands of websites.\nThe post Drupal Vulnerability in Hacker Crosshairs Shortly After Disclosure (https://www.securityweek.com/drupal-vulnerability-in-hacker-crosshairs-shortly-after-disclosure/) appeared first on SecurityWeek (https://www.securityweek.com/).", "creation_timestamp": "2026-05-22T20:34:46.000000Z"}, {"uuid": "8b8f9fb4-4e3c-4e6d-95d4-4ee6d5130f96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://gist.github.com/ichintu/359881223056c94c8d0fd97d9eb10797", "content": "CVE\u20112026\u20119082 is a highly critical SQL injection flaw in Drupal Core\u2019s database abstraction API that targets the PostgreSQL EntityQuery condition handler. The vulnerability allows unauthenticated attackers to execute arbitrary SQL commands. It was disclosed on May\u202f24\u202f2026, just a couple of hours and minutes ago. For full details, see the CVE entry () and the related CVE\u20112005 report (). Additional context is available in the article ().", "creation_timestamp": "2026-05-24T16:00:44.000000Z"}, {"uuid": "47aed6c7-7d99-4eb2-b92e-ab677073fe57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://t.me/thehackernews/9066", "content": "\ud83d\udea8 Drupal Core SQL injection is now actively exploited.\n\nhttps://thehackernews.com/2026/05/drupal-core-sql-injection-bug-actively.html\n\nCISA added CVE-2026-9082 to its KEV catalog after exploitation was detected in the wild.\n\nImperva observed:\n\u2022 15,000+ attack attempts\n\u2022 Nearly 6,000 targeted sites\n\u2022 Activity across 65 countries\n\u2022 Gaming and financial services sites hit hardest, at nearly 50% of attacks\n\nThe flaw affects all supported Drupal Core versions and could allow privilege escalation and remote code execution via specially crafted requests.\n\nPatch now:\n\u2022 Drupal 11.3.10, 11.2.12, 11.1.10, 10.6.9, 10.5.10, 10.4.10.\n\u2022 Drupal 9.5 and 8.9 require manual patching.", "creation_timestamp": "2026-05-23T07:26:46.000000Z"}, {"uuid": "916b2d4a-f107-4eea-b9f0-e598ad69ed13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/PostgreSQL.activitypub.awakari.com.ap.brid.gy/post/3mmk2537oasx2", "content": "CVE-2026-9082: Drupal\u2019s Highly Critical SQL Injection Flaw Is Already Under Active Attack Attackers began exploiting Drupal SQL injection flaw CVE-2026-9082 within 48 hours of patch release. Drup...\n\n#Breaking #News #Cyber #Crime #Hacking #Security [\u2026] \n\n[Original post on securityaffairs.com]", "creation_timestamp": "2026-05-23T18:08:03.518816Z"}, {"uuid": "07582e2c-eeb3-4a80-87c8-d97e8a1eb383", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://t.me/ctinow/250752", "content": "CVE-2026-9082: Drupal\u2019s Highly Critical SQL Injection Flaw Is Already Under Active Attack\nhttps://ift.tt/tTVmbLX", "creation_timestamp": "2026-05-23T17:19:14.000000Z"}, {"uuid": "e22064be-16b0-4572-9253-073bee30b581", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-9082", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116625303510809362", "content": "\ud83d\udcf0 Critical Unauthenticated SQLi Flaw in Drupal Core Hits PostgreSQL Sites\n\ud83d\udea8 CRITICAL vulnerability in Drupal Core (CVE-2026-9082)! Unauthenticated SQL injection affects sites using PostgreSQL, allowing for potential RCE. Patch immediately! #Drupal #CyberSecurity #SQLi #Vulnerability\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/critical-sql-injection-vulnerability-cve-2026-9082-in-drupal-core-for-postgresql/?utm_source=mastodon&utm_medium=social&utm_campaign=daily", "creation_timestamp": "2026-05-23T18:30:37.259618Z"}, {"uuid": "c826930d-83d3-444f-ba77-ca3ecb810467", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "exploited", "source": "https://t.me/htfgtps/1238", "content": "CVE-2026-9082: Drupal's Highly Critical SQL Injection Flaw Is\nAlready Under Active Attack\nhttps://securityaffairs.com/192557/security/cve-2026-9082-drupals-highly-critical-sql-injection-flaw-is-already-under-active_attack.html", "creation_timestamp": "2026-05-24T02:24:31.000000Z"}, {"uuid": "7f03f413-6237-4e8c-9e67-f24e2e909132", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mmngpinxe52e", "content": "Top 3 CVE for last 7 days:\nCVE-2026-45250: 72 interactions\nCVE-2026-45584: 65 interactions\nCVE-2026-46333: 24 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-45250: 8 interactions\nCVE-2026-26980: 6 interactions\nCVE-2026-9082: 4 interactions\n", "creation_timestamp": "2026-05-25T02:30:55.204788Z"}, {"uuid": "c7239846-03b8-407c-af40-6df59f8ee1b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/kitafox.bsky.social/post/3mmnh32prxb25", "content": "CISA\u304c\u65e2\u77e5\u306e\u60aa\u7528\u3055\u308c\u305f\u8106\u5f31\u6027\u30921\u4ef6\u30ab\u30bf\u30ed\u30b0\u306b\u8ffd\u52a0 \n\nCISA Adds One Known Exploited Vulnerability to Catalog  #CISA (May 22)\n\nCVE-2026-9082 Drupal\u30b3\u30a2\u306eSQL\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u8106\u5f31\u6027 \n\nwww.cisa.gov/news-events/...", "creation_timestamp": "2026-05-25T02:37:37.770028Z"}, {"uuid": "6bd4eb5a-9056-4c90-bb2c-7fc8593af624", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "Telegram/tLTaf5zN9aUn_D8KOi_rgxptZENw0EocHmy4bQpa2VASaD8", "content": "", "creation_timestamp": "2026-05-24T09:00:04.000000Z"}, {"uuid": "64808184-5d63-4f44-8574-9fcd3294dac1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "Telegram/fDw4Vf6kwSJ_QsbQNJIzm_DiAG17CwOFTjdetOv1ULjFhQI", "content": "", "creation_timestamp": "2026-05-22T03:00:12.000000Z"}, {"uuid": "b5215be8-e1eb-47f3-8d29-b1de5b54fe43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/intelnightowl.bsky.social/post/3mmmsfljjrh2q", "content": "Newsletter covers #security breach via CVE-2026-9082 exploit, highlighting gaps in international cyber defenses. #cybersecurity #tech https://securityaffairs.com/192586/hacking/security-affairs-newsletter-round-578-by-pierluigi-paganini-international-edition.html", "creation_timestamp": "2026-05-24T20:27:27.500155Z"}, {"uuid": "d36e4ca0-4e38-4cc8-8e00-6e831ea9bec3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "Telegram/FSqoCpfRs5tcSkyHH0m-SqR_qPkUVgdaXVm9URZm7_nuGsY", "content": "", "creation_timestamp": "2026-05-22T23:00:13.000000Z"}, {"uuid": "5262d1b9-d39b-4b13-9389-41806eef81ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mmnaefbae22g", "content": "CVE-2026-9082: Drupal\u2019s Highly Critical SQL Injection Flaw Is Already Under Active Attack\n\nAttackers began exploiting Drupal SQL injection flaw CVE-2026-9082 within 48 hours of patch release. Drupal issued a highly critical security patch on May 20 for CVE-2026-9082, a SQL injecti\u2026\n#hackernews #news", "creation_timestamp": "2026-05-25T00:37:19.606704Z"}, {"uuid": "c58ff777-10a5-4757-89fe-0dc682722b93", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "Telegram/EQ-OtrMk-MWFYtaQdS6-MjZwABKlvl-CaVDrJmD_M-e-p2s", "content": "", "creation_timestamp": "2026-05-22T03:00:06.000000Z"}, {"uuid": "6516060d-0de9-4594-938c-c2b91a409499", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/crowdsec.bsky.social/post/3mmojcq66h22p", "content": "\ud83d\udea8 In this week\u2019s newsletter, we cover CVE-2026-9082, a Drupal JSON: API SQL injection vulnerability now under active exploitation. \n\nWe break down how attackers are targeting exposed /jsonapi/ endpoints and what defenders should do next.\n\n \ud83d\udc49 www.crowdsec.net/vulntracking...", "creation_timestamp": "2026-05-25T12:44:30.291929Z"}, {"uuid": "32336f99-cd3a-41b4-a7a5-6841e6d9bcd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "published-proof-of-concept", "source": "Telegram/vpOabQVvb76izlIWt2pzp7PU5zl-D7jeeGQcHuuxEyFlkWM", "content": "", "creation_timestamp": "2026-05-21T09:00:04.000000Z"}, {"uuid": "3d09b70d-688f-413e-aa16-b1b8d80b5729", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-9082", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3mmo2r2eccc2n", "content": "CVE-2026-9082: Drupal's Highly Critical SQL Injection Flaw Is Already Under Active Attack https://securityaffairs.com/192557/security/cve-2026-9082-drupals-highly-critical-sql-injection-flaw-is-already-under-active-attack.html", "creation_timestamp": "2026-05-25T08:29:41.625395Z"}, {"uuid": "84d9722d-8bbb-46c7-97be-229affa0f78a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "Telegram/6gh1HJgE3RFVn7K8UtbcJPp_JwEYzEQXCykvkUTLZjGZEDc", "content": "", "creation_timestamp": "2026-05-21T21:00:05.000000Z"}, {"uuid": "eadc851c-5fe7-4340-8619-4794d093c52f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "Telegram/srrws2G_oqnzo18NHrsMZQVnJlAuG4EubtN588eV7RqbvrI", "content": "", "creation_timestamp": "2026-05-21T11:00:14.000000Z"}, {"uuid": "802a776f-cbbd-4ea3-a128-4ae594ff7282", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "Telegram/0oVkH4V3C9Cndp9LVxg4I8W2m2s-mbtiL-m94vGYIMA5C-Q", "content": "", "creation_timestamp": "2026-05-21T07:00:13.000000Z"}, {"uuid": "3a2a0c89-4fff-4e36-bc9b-8ea231474b90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/PostgreSQL.activitypub.awakari.com.ap.brid.gy/post/3mmqqpmnmq3m2", "content": "CISA Adds Drupal Core SQL Injection Vulnerability to KEV After Active Exploitation CISA has added CVE-2026-9082, a highly critical Drupal Core SQL injection vulnerability, to its Known Exploited Vu...\n\n#News\n\nOrigin | Interest | Match", "creation_timestamp": "2026-05-26T10:07:56.916714Z"}, {"uuid": "c7e76d69-a71f-4358-8463-00821495bb46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-9082", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3mmpger5xmc22", "content": "\ud83d\udce2 CVE-2026-9082 : Injection SQL dans Drupal JSON:API ajout\u00e9e au catalogue KEV de la CISA\n\ud83d\udcdd ## \ud83d\uddd3\ufe0f Contexte\n\nSource : CrowdSec VulnTracking, publi\u00e9 le 25 mai\u2026\nhttps://cyberveille.ch/posts/2026-05-25-cve-2026-9082-injection-sql-dans-drupal-json-api-ajoutee-au-catalogue-kev-de-la-cisa/ #CISA #Cyberveille", "creation_timestamp": "2026-05-25T21:30:13.910598Z"}, {"uuid": "52957dad-76e7-4706-b1c8-1360fcc8c05b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/getpacketai.bsky.social/post/3mmqekonwtf2g", "content": "Drupal Core SQL injection (CVE-2026-9082) now on CISA's actively exploited list\u2014all supported versions affected. Patch immediately if running Drupal.\n\nhttps://thehackernews.com/2026/05/drupal-core-sql-injection-bug-actively.html\n\n#cybersecurity #infosec", "creation_timestamp": "2026-05-26T06:30:24.519730Z"}, {"uuid": "0b3ec6b1-7af3-45e3-ab51-2358e8d75553", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mmouaicxxy2e", "content": "~Checkpoint~\nHighlights include actively exploited Defender & Drupal flaws, major breaches at GitHub & 7-Eleven, and new AI-driven threats.\n-\nIOCs: CVE-2026-41091, CVE-2026-9082, Showboat\n-\n#CVE #Malware #ThreatIntel", "creation_timestamp": "2026-05-25T16:05:43.832519Z"}, {"uuid": "3dec6a6a-fdb7-4651-ac3f-d2359d423af1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-9082", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116636404454573921", "content": "\ud83d\udcf0 Critical Unauthenticated SQLi Flaw in Drupal Core Hits PostgreSQL Sites\n\ud83d\udea8 CRITICAL vulnerability in Drupal Core (CVE-2026-9082)! Unauthenticated SQL injection affects sites using PostgreSQL, allowing for potential RCE. Patch immediately! #Drupal #CyberSecurity #SQLi #Vulnerability\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/critical-sql-injection-vulnerability-cve-2026-9082-in-drupal-core-for-postgresql/?utm_source=mastodon&utm_medium=social&utm_campaign=daily", "creation_timestamp": "2026-05-25T17:31:33.952608Z"}, {"uuid": "f5fa02f3-117e-4853-9d61-9639ab4ca64f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mmoz34qvof2b", "content": "\ud83d\udea8 CRITICAL vulnerability in Drupal Core (CVE-2026-9082)! Unauthenticated SQL injection affects sites using PostgreSQL, allowing for potential RCE. Patch immediately! #Drupal #CyberSecurity #SQLi #Vulnerability\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-05-25T17:32:12.280068Z"}, {"uuid": "d18824d8-adf7-4715-8cc2-96538a28c639", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/PostgreSQL.activitypub.awakari.com.ap.brid.gy/post/3mmqqtvobf562", "content": "CVE-2026-9082: Critical Drupal SQL Injection Vulnerability Affects PostgreSQL Deployments A critical SQLi vulnerability in Drupal core is actively exploited. Find out which versions are affected, w...\n\n#Security #Bulletin #CVE-2026-9082 #Drupal #SQL [\u2026] \n\n[Original post on indusface.com]", "creation_timestamp": "2026-05-26T10:10:24.560818Z"}, {"uuid": "5e003968-33c9-4c0b-aaac-7e4c7fc66129", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/flingjore.com/post/3mmrnjjpdpt26", "content": "CISA mandates all federal agencies secure systems against a critical Drupal SQL injection vulnerability (CVE-2026-9082) by May 27. Flaw currently targets financial and gaming services, prompting urgent warnings for all private-sector administrators to prioritize patching.", "creation_timestamp": "2026-05-26T18:43:29.988759Z"}, {"uuid": "840387a9-063c-4f48-8266-daf631f873d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mmqw5wvnly22", "content": "CISA added CVE-2026-9082 to its exploited list, ordering federal agencies to patch Drupal by Wednesday after active SQL injection attacks hit thousands of sites. #Drupal #CISA #US", "creation_timestamp": "2026-05-26T11:45:25.066777Z"}, {"uuid": "fa006438-20c2-4e0e-8f18-ee25203828a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/pixelsandpulse.bsky.social/post/3mmqy2oh5ey2s", "content": "A critical SQL injection vulnerability (CVE-2026-9082) in Drupal's core has CISA mandating federal agencies patch by May 27. This unauthenticated flaw allows data theft and RCE, making immediate action crucial for all organizations.\n\nhttps://www.tpp.blog/1geynk1\n\n#cybersecurity #cisa #drupal", "creation_timestamp": "2026-05-26T12:19:22.659478Z"}, {"uuid": "c59570ea-867a-4436-bb96-c3b0d5f04a67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mmqz25bamm26", "content": "A critical SQL injection vulnerability (CVE-2026-9082) in Drupal's core has CISA mandating federal agencies patch by May 27. This unauthenticated flaw allows data theft and RCE, making immediate action crucial for all organizations.\n\nhttps://www.tpp.blog/1geynk1\n\n#potatosecurity #cisa #drupal", "creation_timestamp": "2026-05-26T12:36:58.066373Z"}, {"uuid": "e85e9b39-7f39-4591-b5d0-e8faa88c96d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "Telegram/nG_w5AiBL54pqQPvxeoEXeJ3Bj1IH-UDcvpYjhDu4hLtpA", "content": "", "creation_timestamp": "2026-05-23T11:42:26.000000Z"}, {"uuid": "d65558e4-19bf-438b-b1a3-257d936c827d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/Xuzyh-Oty.closednetwork.social.ap.brid.gy/post/3mmseyse7kcp2", "content": "https://cyberpress.org/exploited-drupal-sql-injection/\nCISA flags exploited Drupal SQL injection flaw CISA added CVE-2026-9082 to its Known Exploited Vulnerabilities catalog after active abuse of a highly critical Drupal Core SQL injection bug", "creation_timestamp": "2026-05-27T01:43:43.112922Z"}, {"uuid": "5ff6c681-efc2-4212-aade-cbe9f3efbb14", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mmskdt7wsi2a", "content": "\ud83d\udcf0 CISA Perintahkan Instansi Pemerintah Segera Tambal Kerentanan SQL Injection Kritis \"CVE-2026-9082\" pada Drupal CMS\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/05/27/cisa-perintahkan-tambal-kerentanan-sql-injection-drupal/\n\n#beritaTeknologi #bindingOperationalDirective #cisaKe", "creation_timestamp": "2026-05-27T03:19:16.403752Z"}, {"uuid": "59e480e0-7268-47f7-91fc-beba7c8f12d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3mmsou2itsc2r", "content": "The latest update for #Indusface includes \"CVE-2026-9082: Critical Drupal SQL Injection Vulnerability Affects #PostgreSQL Deployments\" and \"CVE-2026-44575: Middleware Authorization Bypass in Next.js App Router\".\n \n#cybersecurity #infosec https://opsmtrs.com/3ySs2VF", "creation_timestamp": "2026-05-27T04:39:56.096520Z"}, {"uuid": "272e47f5-1190-4edb-8d3f-5c50369cf932", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/86099", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-9082-PoC\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a thinhap\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-27 10:27:28\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\n\u65e0\u63cf\u8ff0\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-27T11:00:06.000000Z"}]}