Blog Home > Research > Uncovering Drupalgeddon 2

Filter by:

ResearchApril 12, 2018

Uncovering Drupalgeddon 2

By

By Eyal Shalev, Rotem Reiss and Eran Vaknin Abstract Two weeks ago, a highly critical (25/25 NIST rank) vulnerability, nicknamed Drupalgeddon 2 (SA-CORE-2018-002 / CVE-2018-7600), was disclosed by the Drupal security team. This vulnerability allowed an unauthenticated attacker to perform remote code execution on default or common Drupal installations. Drupal is an open-source content management system […]

The post Uncovering Drupalgeddon 2 appeared first on Check Point Research.

You may also like

Research January 10, 2025

Meet FunkSec: A New, Surprising Ransomware Group, Powered by AI

Executive Summary: The FunkSec ransomware group emerged in late 2024 ...

Research January 9, 2025

Cracking the Code: How Banshee Stealer Targets macOS Users

Executive Summary: Since September, Check Point Research (CPR) has been ...

Research December 10, 2024

November 2024’s Most Wanted Malware: Androxgh0st Leads the Pack, Targeting IoT Devices and Critical Infrastructure

Check Point Software’s latest threat index highlights the rise of ...

Research November 27, 2024

The Exploitation of Gaming Engines: A New Dimension in Cybercrime

Executive Summary Check Point Research discovered a new technique using ...