Blog Home > Research > Uncovering Drupalgeddon 2

Filter by:

ResearchApril 12, 2018

Uncovering Drupalgeddon 2

By

By Eyal Shalev, Rotem Reiss and Eran Vaknin Abstract Two weeks ago, a highly critical (25/25 NIST rank) vulnerability, nicknamed Drupalgeddon 2 (SA-CORE-2018-002 / CVE-2018-7600), was disclosed by the Drupal security team. This vulnerability allowed an unauthenticated attacker to perform remote code execution on default or common Drupal installations. Drupal is an open-source content management system […]

The post Uncovering Drupalgeddon 2 appeared first on Check Point Research.

You may also like

Email Security May 15, 2025

Phishing Campaign Mimics Email Quarantine Notifications: 32,000 Emails Target 6,358 Customers

In a recent discovery, Check Point researchers have identified a ...

Research May 9, 2025

April 2025 Malware Spotlight: FakeUpdates Dominates as Multi-Stage Campaigns Blend Commodity Malware with Stealth

Cyber criminals are raising the stakes. This month, researchers uncovered ...

Research May 6, 2025

DragonForce Ransomware: Redefining Hybrid Extortion in 2025

The ransomware world isn’t just evolving—it’s fragmenting, decentralizing, and growing ...

Email Security May 6, 2025

Microsoft Dynamics 365 Customer Voice Phishing Scam

Overview: Check Point researchers have identified a new phishing campaign ...