Drupal

Drupal#

Drupal is an open source content management platform supporting a variety of websites ranging from personal weblogs to large community-driven websites.

Discovery#

Content:

• Users are located under /user/<user-id>.
• Nodes are located under /node/<node-id>.
• Plugins are located under /modules/<module-name>/.
• Themes are located under /themes/<theme-name>/.

drupal_modules_path.txt: List of all Drupal modules from www.drupal.org, sort by Most installed.

Authentication:

• /user/register
• /user/login or /user
• /user/password

Version:

• /CHANGELOG.txt
• /INSTALL.txt
• /UPGRADE.txt

<meta name="generator" content="Drupal 7 (https://www.drupal.org)" />

Admin account into RCE#

• Services module unserialize to rce
• Upload a plugin
• Upload a Theme

Others#

• Drupal frequently utilizes $_REQUEST over $_GET or $_POST, allowing you to alternate between POST and GET requests.
• Drupal commonly caches web requests based on the User-Agent. Additionally, some URLs on HTML pages include the Host HTTP header. This can occasionally lead to cache poisoning and the generation of harmful URLs on the intended site.