CVE-2018-7600 PoC — Drupal 安全漏洞

Source

Associated Vulnerability

Description

CVE-2018-7600 Drupal RCE

Readme

# CVE-2018-7600 Drupal RCE

Credits to:

File | Drupal Ver | Source | Comment
--- | --- | --- | ---
`poc0-curl.sh` | 8 | https://twitter.com/i_bo0om/status/984674893768921089 https://twitter.com/IamSecurity/status/984977193565646848 https://gist.github.com/g0tmi1k/7476eec3f32278adc07039c3e5473708
`poc1-a2u.py` | 8 | https://github.com/a2u/CVE-2018-7600
`poc2-dreadlocked.rb` | 7+8 | https://github.com/dreadlocked/Drupalgeddon2
`poc3-gist.pl` | 8 | https://github.com/dr-iman/CVE-2018-7600-Drupal-0day-RCE/
`poc4-thehappydinoa.py` | 8 | https://github.com/thehappydinoa/CVE-2018-7600
`poc5-shlacky.py` | 8 | https://github.com/sl4cky/CVE-2018-7600 | mass exploiter
`poc6-g0rz.py` | 8 | https://github.com/g0rx/CVE-2018-7600-Drupal-RCE | mass exploiter
`poc7-FireFart.py` | 7 | https://github.com/FireFart/CVE-2018-7600/

- - -

**Vuln Code:**
![Vuln Code](pic-vuln-code.jpg)

**Patch:**
![Patch](pic-vuln-patch.jpg)

**PoC v8:**
![PoC v8](pic-poc-v8-RicterZ.jpg)

**PoC v7:**
![PoC v7](pic-poc-v7-0ang3el.jpg)

**PoC v7:**
![PoC v7](pic-poc-v7-b4nhm1.jpg)

File Snapshot

 [4.0K]  /data/pocs/9dffaea7c0d42a62a30207d8221928d2f12936f3
├── [215K]  pic-poc-v7-0ang3el.jpg
├── [ 77K]  pic-poc-v7-b4nhm1.jpg
├── [288K]  pic-poc-v8-RicterZ.jpg
├── [ 27K]  pic-vuln-code.jpg
├── [ 60K]  pic-vuln-patch.jpg
├── [ 945]  poc0-curl.sh
├── [1.3K]  poc1-a2u.py
├── [5.8K]  poc2-dreadlocked.rb
├── [1.4K]  poc3-gist.pl
├── [1.8K]  poc4-thehappydinoa.py
├── [2.8K]  poc5-shlacky.py
├── [1.1K]  poc6-g0rz.py
├── [1005]  poc7-FireFart.py
└── [1.0K]  README.md

0 directories, 14 files

Remarks