# CVE-2026-9082

> Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Drupal Drupal core allows SQL Injection. This issue affects Drupal core: from 8.9.0 before 10.4.10, from 10.5.0 before 10.5.10, from 10.6.0 before 10.6.9, from 11.0.0 before 11.1.10, from 11.2.0 before 11.2.12, from 11.3.0 before 11.3.10.

- **CVSS:** 9.8 (CRITICAL)
- **EPSS:** 34.2%
- **CISA KEV:** yes (known ransomware use)
- **CWE:** CWE-89

Canonical: https://intel.threadlinqs.com/cve/CVE-2026-9082
Full threat coverage + IOCs via the Threadlinqs MCP server (Purple tier): https://intel.threadlinqs.com/mcp