Blog Home > Research > Uncovering Drupalgeddon 2

Filter by:

ResearchApril 12, 2018

Uncovering Drupalgeddon 2

By

By Eyal Shalev, Rotem Reiss and Eran Vaknin Abstract Two weeks ago, a highly critical (25/25 NIST rank) vulnerability, nicknamed Drupalgeddon 2 (SA-CORE-2018-002 / CVE-2018-7600), was disclosed by the Drupal security team. This vulnerability allowed an unauthenticated attacker to perform remote code execution on default or common Drupal installations. Drupal is an open-source content management system […]

The post Uncovering Drupalgeddon 2 appeared first on Check Point Research.

You may also like

Research April 24, 2025

Cyber Criminals Exploit Pope Francis Death to Launch Global Scams

Following Pope Francis’ death, as is common with global events ...

Harmony SASE April 24, 2025

Securing the Hybrid Workforce in the Age of AI: 5 Priorities for 2025

Generative AI is transforming the modern workplace. It offers new ...

Research April 22, 2025

The State of Ransomware in the First Quarter of 2025: Record-Breaking 126% Spike in Public Extortion Cases

Key Findings The number of publicly-mentioned and extorted victims in ...

Research April 21, 2025

Microsoft Dominates as Top Target for Imitation, Mastercard Makes a Comeback

Phishing attacks are one of the primary intrusion points for ...