Synopsis
Drupal < 7.58 / 8.x < 8.3.9 / 8.4.x < 8.4.6 / 8.5.x < 8.5.1 Remote Code Execution
Description
A remote code execution vulnerability exists within multiple subsystems of Drupal 7.x and 8.x. This potentially allows attackers to exploit multiple attack vectors on a Drupal site, which could result in the site being completely compromised.
Note: This has been detected using an active check and should be remediated immediately.
Solution
Upgrade to Drupal version 7.58 / 8.3.9 / 8.4.6 / 8.5.1 or later.