Recently disclosed Drupal CVE-2019-6340 RCE flaw exploited in the wild
Security Affairs
FEBRUARY 26, 2019
Threat actors in the wild are exploiting the recently patched CVE-2019-6340 flaw in the Drupal CMS to deliver cryptocurrency miners and other payloads. The CVE-2019-6340 flaw is caused by the lack of proper data sanitization in some field types, an attacker could exploit the flaw to execute arbitrary PHP code.
Let's personalize your content