Drupal 6.8 and Drupal 5.14 are slight updates to Drupal 6.7 and 5.13, removing an incompatibility with versions of PHP before 5.2 released in the earlier versions. The 6.7 and 5.13 releases fixed problems reported using the bug tracking system, as well as critical security vulnerabilities.

Upgrading your existing Drupal 5 and 6 sites is strongly recommended. There are no new features in these releases. For more information about the Drupal 6.x release series, consult the Drupal 6.0 release announcement, more information on the 5.x releases can be found in Drupal 5.0 release announcement.

Check out them here

Today, I got a Drupal Security Announcement email from the Drupal team. In the email, the team stated that they found multiple vulnerabitilies and weaknesses in Drupal. But neither of these vulnerabilities are readily exploitable.

Some of the vulnerabilities found includes XSS, Cross Site Request Forgeries, Session Fixation and SQL Injection.

These vulnerabilities and weakness affects all 5.x and 6.x Drupal branches, and it’s strongly advice that you update your Drupal powered site to the latest version.

Download Latest Drupal Versions (5.8 and 6.3)

• If you are running Drupal 5.x then upgrade to Drupal 5.8 (download now)
• If you are running Drupal 6.x then upgrade to Drupal 6.3 (download now)