Source: https://www.easydns.com/blog/2018/04/02/critical-drupal-vulnerability-allows-remote-code-execution/