Drupal Fixes ‘Moderately Critical’ Vulnerabilities in Core Engine Posted on November 19, 2016 by Simon Steed Drupal fixed a handful of issues in version 7 and 8 of the content management system core engine that could have led to cache poisoning, social engineering attacks, and a denial of service condition.