After last week’s seriously serious write-up, this week we will return to our
norml normal, lighthearted (and Metasploit-hearted) wrap-ups, though we remain fans of terrible 80s movies.
Drupalgeddon 2: Webdev Boogaloo
After last month’s Drupal exploit came to light, nearly a dozen developers have been hard at work to add a module targeting CVE-2018-7600. You can read more about that exploit and Metasploit’s (and Rapid7 Labs’) work on it here.
Keep your streets safe and update your firmware
Some Asus routers run a helpful server called infosvr that assists in configuring and discovering neighborhood routers, and since it configures the router for you, it…