CVE-2018-7600βDrupal Core Remote Code Execution Vulnerability
PUBLISHEDvulnerability record
2021-11-03 Β· last modified June 21, 2025
Metadata
Vulnerability Name
Drupal Core Remote Code Execution Vulnerability
Description
Drupal Core contains a remote code execution vulnerability that could allow an attacker to exploit multiple attack vectors on a Drupal site, resulting in complete site compromise.
Known To Be Used in Ransomware Campaigns?
Action
Apply updates per vendor instructions.