Fix my Drupal site (Drupalgeddon)

AFFECTED APPLICATION Drupal versions <= 7.31
FIX Restore your site and then upgrade
FIRST REPORT OF COMPROMISE Oct. 15, 2014 at 11pm UTC

If you're here, we're assuming you've been notified of a critical security issue with Drupal, which has been called Drupalgeddon (or Drupageddon). Drupal's issued an announcement about it here, but this article contains the information you need to protect your Drupal site.

In short, this security risk could let attackers install backdoors on your website using a SQL injection. Essentially, this would let attackers target your website's visitors with various maladies, such as malware.

To warn you, this situation is bad and can get complicated. We have protection measures in place to minimize the risk of your site actually being affected, but it's important to proceed as if your site is compromised.


Analyzing Your Situation

The first thing to investigate is the situation you and your site are in.

Did you upgrade your site before the first reports of compromise?

YES: Your site is unaffected.

NO: You must restore your site from backup, and then upgrade it.

Do you have a backup of your website and website?

YES: Follow this procedure (individual steps outlined in Procedures section):

  1. Restore your website (if you do not have a backup, complete the remaining procedure outlined here and then see Removing Backdoors Manually)
  2. Restore your database (if you do not have a backup, complete the remaining procedure outlined here and then see Removing Backdoors Manually)
  3. Upgrade Drupal

Unsure? If you don't have a backup you maintained yourself, we might be able to help.

Backup Availability

NO: Follow this procedure (individual steps outlined in Procedures section)

  1. Upgrade Drupal
  2. Remove backdoors manually

Procedures

Before beginning the procedures outlined below, make sure you complete them in the correct order by cross-referencing your situation with the Analyzing Your Situation section.

Restoring Your Website

Restoring Your Database

Upgrade Drupal

Manually Remove Backdoors