Release of PoC Exploit for New Drupal Flaw Once Again Puts Sites Under Attack

🗓️ 26 Apr 2018 12:00:32Reported by The Hacker NewsType

Release of PoC Exploit for New Drupal Flaw Once Again Puts Sites Under Attack. Newly discovered remote code execution flaw in Drupal 7 and 8 core (CVE-2018-7602) allows hackers to take over affected websites similar to previous Drupalgeddon2 (CVE-2018-7600) exploit. Attackers actively hijack websites to spread malware

Reporter	Title	Published	Views	Family All 193
The Hacker News	Third Critical Drupal Flaw Discovered—Patch Your Sites Immediately	25 Apr 201816:41	–	thn
The Hacker News	Hackers Have Started Exploiting Drupal RCE Exploit Released Yesterday	14 Apr 201808:29	–	thn
The Hacker News	Over 115,000 Drupal Sites Still Vulnerable to Drupalgeddon2 Exploit	5 Jun 201808:06	–	thn
The Hacker News	Hackers Exploiting Drupal Vulnerability to Inject Cryptocurrency Miners	18 Apr 201809:49	–	thn
The Hacker News	Muhstik Botnet Targeting Redis Servers Using Recently Disclosed Vulnerability	28 Mar 202206:59	–	thn
The Hacker News	Top 15 Vulnerabilities Attackers Exploited Millions of Times to Hack Linux Systems	23 Aug 202113:27	–	thn
The Hacker News	Top 30 Critical Security Vulnerabilities Most Exploited by Hackers	29 Jul 202108:21	–	thn
OpenVAS	Drupal Core Critical RCE Vulnerability (SA-CORE-2018-004) - Windows	26 Apr 201800:00	–	openvas
OpenVAS	Drupal Core Critical RCE Vulnerability (SA-CORE-2018-004) - Linux	26 Apr 201800:00	–	openvas
OpenVAS	Debian: Security Advisory (DLA-1365-1)	26 Apr 201800:00	–	openvas

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Apr 2018 12:32Current

10High risk

Vulners AI Score10

EPSS0.97464