CVE-2018-7602: Remote Code Execution

July 19, 2018 (updated October 9, 2019)

A remote code execution vulnerability allows attackers to exploit multiple attack vectors on a Drupal site, which can result in the site being compromised.

References

www.drupal.org/sa-core-2018-004

Detect and mitigate CVE-2018-7602 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →