Drupalgeddon — Drupal SQL Injection
CVE-2014-3704
The expandArguments function in the database abstraction API in Drupal core 7.x before 7.32 does not properly construct prepared statements, which allows remote attackers to conduct SQL injection attacks via an array containing crafted key…
Vulnerability class: SQL Injection
EPSS: 0.944 (100.0th percentile) — read the EPSS interpretation.
Affected products
- Drupal
- Debian Debian_linux — versions 7.0
- N/a — versions n/a
Weakness classification (CWE)
Public proof-of-concept exploits
References
- secalert@redhat.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
- 20141016 Advisory 01/2014: Drupal7 - pre Auth SQL Injection Vulnerability (mailing-list, Exploit, x_refsource_FULLDISC, Patch, Mailing List, Third Party Advisory)
- 20141015 Advisory 01/2014: Drupal7 - pre Auth SQL Injection Vulnerability (mailing-list, x_refsource_BUGTRAQ, Third Party Advisory, VDB Entry)
- secalert@redhat.com (Exploit, Patch, Third Party Advisory, x_refsource_MISC)
- 34984 (Exploit, exploit, Third Party Advisory, VDB Entry, x_refsource_EXPLOIT-DB)
- 35150 (Exploit, exploit, Third Party Advisory, VDB Entry, x_refsource_EXPLOIT-DB)
- [oss-security] 20141015 Advisory 01/2014: Drupal7 - pre Auth SQL Injection Vulnerability (mailing-list, x_refsource_MLIST, Exploit, Patch, Mailing List)
- 59972 (x_refsource_SECUNIA, Third Party Advisory, third-party-advisory)
- secalert@redhat.com (Exploit, VDB Entry, Third Party Advisory, x_refsource_MISC)
- 34992 (Exploit, exploit, Third Party Advisory, VDB Entry, x_refsource_EXPLOIT-DB)
Frequently asked questions
- What is CVE-2014-3704?
- CVE-2014-3704 is a vulnerability in Drupal, classified under SQL Injection. Published 2014-10-16.
- Is CVE-2014-3704 known to be exploited?
- 53 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.