This article is contributed. See the original author and article here.
Drupal has released security updates to address a Guzzle third-party library vulnerability that does not affect Drupal core but may affect some contributed projects or custom code on Drupal sites. Exploitation of this vulnerability could allow a remote attacker to take control of an affected website.
CISA encourages users and administrators to review Drupal security advisory SA-CORE-011 and apply the necessary updates.
Brought to you by Dr. Ware, Microsoft Office 365 Silver Partner, Charleston SC.