a2u - Security Researcher - Exploit Intelligence Platform

CVE-2018-7600 NOMISEC CRITICAL WORKING POC

Drupal Drupalgeddon 2 Forms API Property Injection

Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations.

353 stars

CVSS 9.8

View Code

CVE-2018-7600 NOMISEC CRITICAL WORKING POC

Drupal Drupalgeddon 2 Forms API Property Injection

Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations.

114 stars

CVSS 9.8

View Code

CVE-2018-7600 METASPLOIT CRITICAL ruby WORKING POC

Drupal Drupalgeddon 2 Forms API Property Injection

Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations.

CVSS 9.8

View Code