Download Drupal 7.60 / 8.5.8 / 8.6.2

Updates have been released for versions 7† 8.5 and 8.6 from Drupal, which should fix various vulnerabilities. Drupal is a PHP-written, user-friendly and powerful content management platform, with which, for example, websites can be created. It’s simple enough for a novice user, but powerful enough to build a more complex website as well. The program includes a content management platform and a development framework. Below are the vulnerabilities that are in Advisory SA-CORE-2018-006 have been rectified.

Content moderation – Moderately critical – Access bypass – Drupal 8
In some conditions, content moderation fails to check a users access to use certain transitions, leading to an access bypass.

External URL injection through URL aliases – Moderately Critical – Open Redirect – Drupal 7 and Drupal 8
The path module allows users with the ‘administer paths’ to create pretty URLs for content. In certain circumstances the user can enter a particular path that triggers an open redirect to a malicious url.

Anonymous Open Redirect – Moderately Critical – Open Redirect – Drupal 8
Drupal core and contributed modules frequently use a “destination” query string parameter in URLs to redirect users to a new destination after completing an action on the current page. Under certain circumstances, malicious users can use this parameter to construct a URL that will trick users into being redirected to a 3rd party website, thereby exposing the users to potential social engineering attacks.

Injection in DefaultMailSystem::mail() – Critical – Remote Code Execution – Drupal 7 and Drupal 8
When sending email some variables were not being sanitized for shell arguments, which could lead to remote code execution.

Contextual Links validation – Critical – Remote Code Execution – Drupal 8
The Contextual Links module doesn’t sufficiently validate the requested contextual links. This vulnerability is mitigated by the fact that an attacker must have a role with the permission “access contextual links”.