"We run a non-profit summer camp and hired Ricochet to design our camper and staff database from scratch. Their initial design was custom fit to suit our needs and as those needs have evolved the helpful staff at Ricochet have insured that timely changes keep our database up to date and running smoothly. Thanks for the fantastic service and personal attention, it's made a huge difference for our camp!"
—Chrissie Endler, Camp del Corazon

Node export - Moderately critical - Arbitrary PHP code execution - SA-CONTRIB-2024-061

Wed, 2024-11-20 09:12 — Anonymous (not verified)

Project: Node exportDate: 2024-November-20Security risk: Moderately critical 14 ∕ 25 AC:Complex/A:Admin/CI:All/II:All/E:Theoretical/TD:UncommonVulnerability: Arbitrary PHP code executionDescription: This module allows users to export nodes and then import it into another Drupal installation, or on the same site.
In certain cases the module doesn't sufficiently sanitize data before passing it to PHP's unserialize() function, which could results in Remote Code Execution via PHP Object Injection.
This vulnerability is mitigated by the fact that an attack must operate with the permission "Use PHP to import nodes", however this could be the case if this issue were combined with others in an "attack chain".
In general, if this module is not in active use it is recommended to disable it.Solution: Install the latest version:

If you use the Node Export module for Drupal 7, upgrade to Node Export 7.x-3.3

Reported By:

Drew Webber of the Drupal Security Team

Fixed By:

Drew Webber of the Drupal Security Team
Ivan Trokhanenko

Coordinated By:

Drew Webber of the Drupal Security Team
Greg Knaddison of the Drupal Security Team

Path to article https://www.drupal.org/sa-contrib-2024-061

Search form

Node export - Moderately critical - Arbitrary PHP code execution - SA-CONTRIB-2024-061