Lucene search
K

25 matches found

Tenable Nessus
Tenable Nessus
added 2023/10/20 12:0 a.m.40 views

Ubuntu 16.04 ESM : Drupal vulnerabilities (USN-4773-1)

The remote Ubuntu 16.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4773-1 advisory. It was discovered that Drupal did not properly process certain input. An attacker could use this vulnerability to execute arbitrary code or completely...

9.8CVSS7.9AI score0.99993EPSS
Exploits58References6
OpenVAS
OpenVAS
added 2019/03/07 12:0 a.m.38 views

Fedora Update for drupal7 FEDORA-2019-82df33e428

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.2AI score
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.56 views

Fedora 28 : drupal7 (2018-43c64deada) (Drupalgeddon 2)

https://www.drupal.org/project/drupal/releases/7.59 - https://www.drupal.org/SA-CORE-2018-004 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

9.8CVSS7.1AI score0.99236EPSS
Exploits14References2
OpenVAS
OpenVAS
added 2018/12/04 12:0 a.m.43 views

Fedora Update for drupal7 FEDORA-2018-18023f40fa

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2AI score
Exploits0References4
Cvelist
Cvelist
added 2018/07/19 5:0 p.m.30 views

CVE-2018-7602 Drupal core - Highly critical - Remote Code Execution - SA-CORE-2018-004

A remote code execution vulnerability exists within multiple subsystems of Drupal 7.x and 8.x. This potentially allows attackers to exploit multiple attack vectors on a Drupal site, which could result in the site being compromised. This vulnerability is related to Drupal core - Highly critical -...

9.8AI score0.99236EPSS
Exploits14References7
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:9 a.m.32 views

Security Bulletin: API Connect Developer Portal is affected by a Drupal vulnerability (CVE-2018-7602)

Summary IBM API Connect has addressed the following vulnerability. Drupal could allow a remote attacker to execute arbitrary code on the system, caused by an error within multiple subsystems. An attacker could exploit this vulnerability using multiple attack vectors to execute arbitrary code on t...

9.8CVSS2.8AI score0.99236EPSS
Exploits14Affected Software1
OpenVAS
OpenVAS
added 2018/05/12 12:0 a.m.55 views

Fedora Update for drupal7 FEDORA-2018-2359c2ae0e

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.99993EPSS
Exploits58References4
OpenVAS
OpenVAS
added 2018/05/12 12:0 a.m.43 views

Fedora Update for drupal7 FEDORA-2018-b9ad458866

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.99993EPSS
Exploits58References4
OpenVAS
OpenVAS
added 2018/05/12 12:0 a.m.39 views

Fedora Update for drupal8 FEDORA-2018-1ba93b3144

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.99993EPSS
Exploits59References4
Tenable Nessus
Tenable Nessus
added 2018/05/11 12:0 a.m.53 views

Fedora 27 : drupal7 (2018-b9ad458866) (Drupalgeddon 2)

https://www.drupal.org/project/drupal/releases/7.59 - https://www.drupal.org/SA-CORE-2018-004 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

9.8CVSS7.1AI score0.99236EPSS
Exploits14References2
Tenable Nessus
Tenable Nessus
added 2018/05/11 12:0 a.m.53 views

Fedora 26 : drupal7 (2018-2359c2ae0e) (Drupalgeddon 2)

https://www.drupal.org/project/drupal/releases/7.59 - https://www.drupal.org/SA-CORE-2018-004 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

9.8CVSS7.1AI score0.99236EPSS
Exploits14References2
0day.today
0day.today
added 2018/05/01 12:0 a.m.719 views

Drupal < 7.58 - Drupalgeddon3 Authenticated Remote Code Exploit

Exploit for php platform in category web applications This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Drupalgeddon3', 'Description' = %q CVE-2018-7602 / SA-CORE-2018-004 A remote code execution...

9.9AI score0.99236EPSS
Exploits14
Exploit DB
Exploit DB
added 2018/04/30 12:0 a.m.173 views

Drupal &lt; 7.58 - &#039;Drupalgeddon3&#039; (Authenticated) Remote Code (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Drupalgeddon3', 'Description' = %q CVE-2018-7602 / SA-CORE-2018-004 A remote code execution vulnerability exists within multiple subsystems of...

9.8CVSS9.9AI score0.99236EPSS
Exploits14
Packet Storm
Packet Storm
added 2018/04/30 12:0 a.m.86 views

Drupalgeddon3 Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Drupalgeddon3', 'Description' = %q CVE-2018-7602 / SA-CORE-2018-004 A remote code execution vulnerability exists within multiple subsystems of...

9.9AI score0.99236EPSS
Exploits14
exploitpack
exploitpack
added 2018/04/30 12:0 a.m.68 views

Drupal 7.58 - Drupalgeddon3 (Authenticated) Remote Code (Metasploit)

Drupal 7.58 - Drupalgeddon3 Authenticated Remote Code Metasploit This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Drupalgeddon3', 'Description' = %q CVE-2018-7602 / SA-CORE-2018-004 A remote cod...

7.5CVSS0.5AI score0.99236EPSS
Exploits14
GithubExploit
GithubExploit
added 2018/04/27 1:59 a.m.9 views

Exploit for Code Injection in Drupal

POC for Drupal exploit SA-CORE-2018-004 / CVE-2018-7602 Au...

9.8CVSS8.5AI score0.99236EPSS
Exploits14
ArchLinux
ArchLinux
added 2018/04/27 12:0 a.m.34 views

[ASA-201804-10] drupal: arbitrary command execution

Arch Linux Security Advisory ASA-201804-10 ========================================== Severity: Critical Date : 2018-04-27 CVE-ID : CVE-2018-7602 Package : drupal Type : arbitrary command execution Remote : Yes Link : https://security.archlinux.org/AVG-679 Summary ======= The package drupal befor...

9.8CVSS3.3AI score0.99236EPSS
Exploits14References4
The Hacker News
The Hacker News
added 2018/04/26 12:32 p.m.263 views

Release of PoC Exploit for New Drupal Flaw Once Again Puts Sites Under Attack

Only a few hours after the Drupal team releases latest updates to fix a new remote code execution flaw in its content management system software, hackers have already started exploiting the vulnerability in the wild. Announced yesterday, the newly discovered vulnerability CVE-2018-7602 affects...

9.8CVSS10AI score0.99993EPSS
Exploits58
OpenVAS
OpenVAS
added 2018/04/26 12:0 a.m.41 views

Debian: Security Advisory (DLA-1365-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.9AI score0.99236EPSS
Exploits14References5
Tenable Nessus
Tenable Nessus
added 2018/04/26 12:0 a.m.53 views

Debian DSA-4180-1 : drupal7 - security update (Drupalgeddon 2)

A remote code execution vulnerability has been found in Drupal, a fully-featured content management framework. For additional information, please refer to the upstream advisory at https://www.drupal.org/sa-core-2018-004 C Tenable Network Security, Inc. The descriptive text and package checks in...

9.8CVSS7.7AI score0.99236EPSS
Exploits14References7
Rows per page
Query Builder