Get Started Free|Contact Sales

The Cloudflare Blog

Subscribe to receive notifications of new posts:

Cloudflare is adding Drupal WAF Rule to Mitigate Critical Drupal Exploit

03/29/2018

0 min read

Drupal has recently announced an update to fix a critical remote code execution exploit (SA-CORE-2018-002/CVE-2018-7600). In response we have just pushed out a rule to block requests matching these exploit conditions for our Web Application Firewall (WAF). You can find this rule in the Cloudflare ruleset in your dashboard under the Drupal category with the rule ID of D0003.

Drupal Advisory: https://www.drupal.org/sa-core-2018-002

We protect entire corporate networks, help customers build Internet-scale applications efficiently, accelerate any website or Internet application, ward off DDoS attacks, keep hackers at bay, and can help you on your journey to Zero Trust.

Visit 1.1.1.1 from any device to get started with our free app that makes your Internet faster and safer.

To learn more about our mission to help build a better Internet, start here. If you're looking for a new career direction, check out our open positions.
WAF RulesDrupalAttacksVulnerabilitiesWAF

Follow on X

Cloudflare|@cloudflare

Related posts

May 21, 2015 10:10 PM

Welcome Acquia!

We’ve had the good fortune to share many great experiences with the Acquia team over the last few years. From breaking bread with founder and CTO Dries Buytaert at SXSW, to staying up late with their incredible team onboarding a joint customer under a DDoS attack. ...

Partners, SXSW, DDoS, Drupal, Reliability