1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Drupal RCE CVE-2018-7600

Web Attack: Drupal RCE CVE-2018-7600

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.


This signature detects attempts to exploit a remote code execution vulnerability in Drupal.

Additional Information

Drupal is a PHP-based content manager.

Drupal is prone to multiple remote code-execution vulnerabilities that exists in multiple subsystems.

Note: Very limited information is currently available regarding this issue. We will update this BID as more information emerges.

An attacker can exploit these issues to execute arbitrary code in the context of the affected application. Failed exploit attempts may result in a denial-of-service condition.


  • The following versions are affected:
  • 7.x versions prior to 7.58
  • 8.5.0
  • 8.3.x versions prior to 8.3.9
  • 8.4.x versions prior to 8.4.6
  • 8.2.x and prior
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube