Imperva Customers Protected Against CVE-2026-9082 in Drupal Core

**Executive summary:** CVE-2026-9082 is a critical SQL injection vulnerability in Drupal core affecting PostgreSQL-backed sites (multiple 8.x–11.x versions), exploitable by unauthenticated users via JSON login and JSON:API filter paths; Imperva observed over 15,000 probing attempts against nearly 6,000 sites across 65 countries using payloads that test JSON:API routes, SQL operators and time-based functions. Organizations should upgrade immediately to the listed patched versions (10.4.10, 10.5.10, 10.6.9, 11.1.10, 11.2.12, or 11.3.10), review relevant logs for suspicious JSON:API and /user/login?_format=json activity, and note that Imperva WAF customers are reported protected.