A Bash script to exploit the Drupalgeddon2 vulnerability (CVE-2018-7600) in Drupal websites. This vulnerability allows an attacker to execute arbitrary code on the server by exploiting a flaw in the Drupal core.
This script requires the following tools to be installed on the system:
- Bash shell
- curl
- Usage To use this script, run the following command from the terminal:
bash Copy code ./drupalgeddon2.sh -h -c where:
is the URL of the target Drupal website. is the command to be executed on the server. For example:
bash Copy code ./exploit.sh -h http://www.drupal-test.daynisolman.com -c 'ls -la' This will exploit the Drupal vulnerability on the website and execute the command ls -la on the server.
This script is released under the MIT License. See LICENSE for more information.