Exploit for Deserialization of Untrusted Data in Drupal CVE-2019-6340

Name: Exploit for Deserialization of Untrusted Data in Drupal CVE-2019-6340
Rating: 5 (77 reviews)

2021-05-01 | CVSS 8.1

## https://sploitus.com/exploit?id=D9F421A6-5B20-56B3-AA86-5C0A2116D651
# Drupal Drupal 8.6.x RCE Exploit

exploit CVE: CVE-2019-6340

CMS: Drupal

CMS Version: Drupal 8.6.x tested

condition:

-Drupal 8.6.x, < 8.6.10 OR Drupal < 8.5.11

-RESTful Web Services module is enabled

![alt text](image.png)