Jasper Mattsson - Security Researcher - Exploit Intelligence Platform

CVE-2018-0492 GITHUB HIGH WRITEUP

beep < 1.3.4 - Local Privilege Escalation via Race Condition

Johnathan Nightingale beep through 1.3.4, if setuid, has a race condition that allows local privilege escalation.

3,480 stars

CVSS 7.0

View Code

CVE-2018-7600 GITHUB CRITICAL WRITEUP

Drupal Drupalgeddon 2 Forms API Property Injection

Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations.

3,480 stars

CVSS 9.8

View Code

CVE-2018-7600 GITHUB CRITICAL WRITEUP

Drupal Drupalgeddon 2 Forms API Property Injection

Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations.

14 stars

CVSS 9.8

View Code

CVE-2018-0492 GITHUB HIGH WRITEUP

beep < 1.3.4 - Local Privilege Escalation via Race Condition

Johnathan Nightingale beep through 1.3.4, if setuid, has a race condition that allows local privilege escalation.

14 stars

CVSS 7.0

View Code

CVE-2019-6340 METASPLOIT HIGH ruby WORKING POC

Drupal 7.0.0-7.61.0 8.5.0-8.5.10 8.6.0-8.6.9 - Remote Code Execution via Unsanitized Field Data

Some field types do not properly sanitize data from non-form sources in Drupal 8.5.x before 8.5.11 and Drupal 8.6.x before 8.6.10. This can lead to arbitrary PHP code execution in some cases. A site is only affected by this if one of the following conditions is met: The site has the Drupal 8 core RESTful Web Services (rest) module enabled and allows PATCH or POST requests, or the site has another web services module enabled, like JSON:API in Drupal 8, or Services or RESTful Web Services in Drupal 7. (Note: The Drupal 7 Services module itself does not require an update at this time, but you should apply other contributed updates associated with this advisory if Services is in use.)

CVSS 8.1

View Code

CVE-2018-7600 METASPLOIT CRITICAL ruby WORKING POC

Drupal Drupalgeddon 2 Forms API Property Injection

Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations.

CVSS 9.8

View Code

CVE-2019-6340 EXPLOITDB HIGH ruby WORKING POC

Drupal 7.0.0-7.61.0 8.5.0-8.5.10 8.6.0-8.6.9 - Remote Code Execution via Unsanitized Field Data

Some field types do not properly sanitize data from non-form sources in Drupal 8.5.x before 8.5.11 and Drupal 8.6.x before 8.6.10. This can lead to arbitrary PHP code execution in some cases. A site is only affected by this if one of the following conditions is met: The site has the Drupal 8 core RESTful Web Services (rest) module enabled and allows PATCH or POST requests, or the site has another web services module enabled, like JSON:API in Drupal 8, or Services or RESTful Web Services in Drupal 7. (Note: The Drupal 7 Services module itself does not require an update at this time, but you should apply other contributed updates associated with this advisory if Services is in use.)

CVSS 8.1

View Code