CVE-2018-7600

Drupal Core contains a remote code execution vulnerability that could allow an attacker to exploit multiple attack vectors on a Drupal site, resulting in complete site compromise. Vendor/Product: Drupal Drupal Core. Added to CISA KEV 2021-11-03; required action: Apply updates per vendor instructions.