CVE-2018-7602

This Metasploit module exploits CVE-2018-7602 (Drupalgeddon3), a remote code execution vulnerability in Drupal 7.x and 8.x. It leverages a chain of HTTP requests to inject and execute arbitrary PHP code via a malicious payload encoded in base64.

This exploit leverages a Drupal 7 vulnerability (CVE-2018-7602) by manipulating form inputs to achieve remote command execution via the 'passthru' function. It requires authentication and a valid CSRF token to trigger the payload.

This is a functional PoC for CVE-2018-7602, exploiting a remote code execution vulnerability in Drupal via a crafted POST request to inject and execute arbitrary commands. The exploit leverages Drupal's form API and AJAX endpoints to bypass input sanitization.

This Perl script exploits CVE-2018-7602 (Drupalgeddon2), a remote code execution vulnerability in Drupal 7 and 8. It sends crafted HTTP requests to trigger arbitrary command execution via PHP functions like 'passthru'.

This repository contains a Python-based exploit for CVE-2018-7602, a remote code execution vulnerability in Drupal 7 <= 7.58. The exploit leverages a double-encoded URL to bypass sanitization and execute arbitrary commands via the 'destination' parameter in the user account cancellation form.

This repository contains a functional Metasploit module for CVE-2018-7602, a remote code execution vulnerability in Drupal 7.x and 8.x. The exploit leverages authenticated session cookies to execute arbitrary commands via a crafted POST request to a node deletion endpoint.

This YAML-based PoC exploits CVE-2018-7602 (Drupalgeddon2) by chaining authentication, form token extraction, and command injection via malicious URL parameters to achieve remote code execution (RCE). It verifies success by checking for a random echo string in the response.

This Perl script exploits CVE-2018-7602 (Drupalgeddon2), a remote code execution vulnerability in Drupal 7 and 8. It sends crafted HTTP requests to trigger arbitrary command execution via PHP functions like 'passthru'.

This repository contains a functional exploit for CVE-2018-7602 (Drupalgeddon3), a remote code execution vulnerability in Drupal. The exploit leverages a deserialization flaw in Drupal's form API to execute arbitrary commands on the target system.

The repository contains a Python script that scans Drupal installations to detect versions vulnerable to CVE-2018-7600 and CVE-2018-7602. It checks version numbers by fetching CHANGELOG.txt or other files and compares them against known vulnerable versions.

The repository contains functional exploit code for CVE-2018-7600 and CVE-2018-7602, targeting Drupal 7. The exploits leverage form poisoning and cache manipulation to achieve remote code execution.