Drupal Drupalgeddon 2 Forms API Property Injection
Posted by deepcore on April 27, 2018 – 8:44 am
This Metasploit module exploits a Drupal property injection in the Forms API. Drupal versions 6.x, less than 7.58, 8.2.x, less than 8.3.9, less than 8.4.6, and less than 8.5.1 are vulnerable.
Post a reply
You must be logged in to post a comment.