Critical vulnerability in WordPress and Drupal

Security expert Nir Goldshlager has discovered a critical vulnerability of XML handling in PHP that affects popular CMSs Drupal and WordPress. An attacker can cause complete DoS (100% load of both the processor and RAM) of the server. Both Drupal and WordPress have issued new fixed versions.