The Drupal Security Team has released a critical security advisory and software updates for the Drupal Content Management System (CMS). Users with websites running either Drupal 6 or Drupal 7 are urged to upgrade immediately.
Source: Sophos