Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2018-7600 PoC — Drupal 安全漏洞

Source
https://github.com/rabbitmask/CVE-2018-7600-Drupal7
Associated Vulnerability
Title:Drupal 安全漏洞 (CVE-2018-7600)
Description:Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations.
Description
CVE-2018-7600【Drupal7】批量扫描工具。
Readme
# CVE-2018-7600-Drupal7
CVE-2018-7600【Drupal7】批量扫描工具。

    主文件:CVE-2018-7600-Drupal7.py
    其实本质是封装了`whoami`的exp
    Drupal7/8的原理是一样的但该脚本当是只做了7的适配
    提供`target.txt`作为目标输入,结果自动输出到`result.txt`文件
    因为是好久前写的脚本现在分享一下,有不够精致的地方还请多多包涵

##### Demo:

<div align=center><img src=Drupal7-poc.png width="90%"></div>

    为了防止你们说我水,顺便丢一个单目标的EXP
    
##### 本脚本仅用于授权测试,请勿用于非法用途,请遵守游戏规则。
File Snapshot

 [4.0K]  /data/pocs/0d6cd97f4a693e6fdb511d8ff589209eec032600
├── [2.1K]  CVE-2018-7600-Drupal7-EXP.py
├── [2.4K]  CVE-2018-7600-Drupal7.py
├── [238K]  Drupal7-poc.png
└── [ 650]  README.md

0 directories, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →