Hacking Drupal CMS - Drupalgeddon Forms API Injection

Drupal is an open-source content management system (CMS) that is used by more than one million sites around the world (including governments, e-retail, enterprise organizations, financial institutions and more), all of which are vulnerable unless patched.

Drupal security team discovered a highly critical remote code execution vulnerability, named Drupalgeddon2.
in Drupal CMS that could allow attackers to completely take over drupal website.

Few days ago, security researchers at Check Point published complete technical details about
this vulnerability  (SA-CORE-2018-002 / CVE-2018-7600).

Exploit Code


Sites administrators still running vulnerable versions of Drupal are highly recommended to patch the vulnerability by updating their CMS to Drupal 7.58 or Drupal 8.5.1 as soon as possible to avoid exploits.

The vulnerability also affects Drupal 6, which is no longer supported by the company since February 2016, but a patch for the version has still been created.