10) CVE-2018-7600 - This was a remote code execution vulnerability in Drupal, also known as Drupalgeddon. Attacker-controlled content could be evaluated as PHP. This issue was trivially exploitable, since attackers could call PHP's exec function with arbitrary parameters.
-
-
Finally, let's redirect some of that energy towards the attackers who develop and deploy (often recklessly deploy) 0day exploits, which leads to many years of unintended fallout and expensive cleanups after their exploits are leaked or discovered. The damage is enormous. [END]
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@threadreaderapp unroll, por favor -
Guten tag, please find the unroll here:
@benhawkes: This is a list of the most commonly exploited vulnerabilities between 2016 and 2019, from CISA and FBI.… https://threadreaderapp.com/thread/1262776020127510531.html … Have a good day.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.