JOIN TELEGRAM CHANNEL
Home
Blog
Tools
PHP Shell
ASP/ASPX Shell
Bypass Shell
Exploits
WordPress Exploits
Joomla Exploits
Drupal Exploits
PrestaShop Exploits
OpenCart Exploits
Drupal Exploits
DATABASE
Drupal 11.x-dev – Full Path Disclosure
CVE-2024-45440
php
VIEW
Drupal 10.1.2 – web-cache-poisoning-External-service-interaction
php
VIEW
Drupal avatar_uploader v7.x-1.0-beta8 – Cross Site Scripting (XSS)
php
VIEW
Drupal Module MiniorangeSAML 8.x-2.22 – Privilege escalation
php
VIEW
Drupal < 8.5.11 / < 8.6.10 - RESTful Web Services unserialize() Remote Command Execution (Metasploit)
CVE-2019-6340
php
VIEW
Drupal < 8.6.9 - REST Module Remote Code Execution
CVE-2019-6340
php
VIEW
Drupal < 8.6.10 / < 8.5.11 - REST Module Remote Code Execution
CVE-2019-6340
php
VIEW
Drupal < 7.58 - 'Drupalgeddon3' (Authenticated) Remote Code (Metasploit)
CVE-2018-7602
php
VIEW
Drupal < 7.58 - 'Drupalgeddon3' (Authenticated) Remote Code Execution (PoC)
CVE-2018-7602;SA-CORE-2018-004
php
VIEW
Drupal avatar_uploader v7.x-1.0-beta8 – Arbitrary File Disclosure
CVE-2018-9205
php
VIEW
Drupal < 8.3.9 / < 8.4.6 / < 8.5.1 - 'Drupalgeddon2' Remote Code Execution (Metasploit)
CVE-2018-7600
php
VIEW
Drupal < 7.58 / < 8.3.9 / < 8.4.6 / < 8.5.1 - 'Drupalgeddon2' Remote Code Execution
CVE-2018-7600
php
VIEW
Drupal < 8.3.9 / < 8.4.6 / < 8.5.1 - 'Drupalgeddon2' Remote Code Execution (PoC)
CVE-2018-7600
php
VIEW
Drupal 7.x Module Services – Remote Code Execution
php
VIEW
Drupal Module CODER 2.5 – Remote Command Execution (Metasploit)
php
VIEW
Drupal Module Coder < 7.x-1.3/7.x-2.6 - Remote Code Execution
php
VIEW
Drupal Module RESTWS 7.x – PHP Remote Code Execution (Metasploit)
php
VIEW
Drupal < 7.34 - Denial of Service
CVE-2014-9016;OSVDB-114870
php
VIEW
Drupal 7.0 < 7.31 - 'Drupalgeddon' SQL Injection (Admin Session)
CVE-2014-3704;OSVDB-113371
php
VIEW
Drupal 7.0 < 7.31 - 'Drupalgeddon' SQL Injection (Remote Code Execution)
CVE-2014-3704;OSVDB-113371
php
VIEW
Drupal 7.0 < 7.31 - 'Drupalgeddon' SQL Injection (Add Admin User)
CVE-2014-3704;OSVDB-113371;SA-CORE-2014-005
php
VIEW
Drupal 7.0 < 7.31 - 'Drupalgeddon' SQL Injection (PoC) (Reset Password) (2)
CVE-2014-3704;OSVDB-113371
php
VIEW
Drupal 7.0 < 7.31 - 'Drupalgeddon' SQL Injection (PoC) (Reset Password) (1)
CVE-2014-3704;SA-CORE-2014-005
php
VIEW
Drupal Module CKEditor < 4.1WYSIWYG (Drupal 6.x/7.x) - Persistent Cross-Site Scripting
OSVDB-93492
php
VIEW
Drupal Module Drag & Drop Gallery 6.x-1.5 – ‘upload.php’ Arbitrary File Upload
php
VIEW
Drupal 7.12 – Multiple Vulnerabilities
OSVDB-80665;CVE-2007-6752
php
VIEW
Drupal Module CKEditor 3.0 < 3.6.2 - Persistent EventHandler Cross-Site Scripting
OSVDB-82463
php
VIEW
Drupal Module Cumulus 5.x-1.1/6.x-1.4 – ‘tagcloud’ Cross-Site Scripting
php
VIEW
Drupal Module CAPTCHA – Security Bypass
php
VIEW
Drupal Module Embedded Media Field/Media 6.x : Video Flotsam/Media: Audio Flotsam – Multiple Vulnerabilities
php
VIEW
Drupal < 5.22/6.16 - Multiple Vulnerabilities
php
VIEW
Drupal 6.15 – Multiple Persistent Cross-Site Scripting Vulnerabilities
php
VIEW
Drupal 5.21/6.16 – Denial of Service
php
VIEW
Drupal Module Sections – Cross-Site Scripting
CVE-2009-4429;OSVDB-61107
php
VIEW
Drupal Module Sections 5.x-1.2/6.x-1.2 – HTML Injection
CVE-2009-4429;OSVDB-61107
php
VIEW
Drupal Module Ajax Checklist 5.x-1.0 – Multiple SQL Injections
CVE-2008-5998;OSVDB-48521
php
VIEW
Drupal 5.2 – PHP Zend Hash ation Vector
OSVDB-43656;CVE-2007-5416
php
VIEW
Drupal 4.7 – ‘Attachment mod_mime’ Remote Command Execution
OSVDB-25909;CVE-2006-2743
php
VIEW
Drupal 4.x – URL-Encoded Input HTML Injection
php
VIEW
Drupal 4.1/4.2 – Cross-Site Scripting
php
VIEW
Drupal 4.0 – News Message HTML Injection
CVE-2002-1806;OSVDB-59300
php
VIEW
