Drupal < 7.58 / 8.x < 8.3.9 / 8.4.x < 8.4.6 / 8.5.x < 8.5.1 Remote Code Execution
Critical Web Application Scanning Plugin ID 98216
SynopsisDrupal < 7.58 / 8.x < 8.3.9 / 8.4.x < 8.4.6 / 8.5.x < 8.5.1 Remote Code Execution
DescriptionA remote code execution vulnerability exists within multiple subsystems of Drupal 7.x and 8.x. This potentially
allows attackers to exploit multiple attack vectors on a Drupal site, which could result in the site being
Note: This has been detected using an active check and should be remediated immediately.
SolutionUpgrade to Drupal version 7.58 / 8.3.9 / 8.4.6 / 8.5.1 or later.