CVE-2005-2106

Drupal 4.5.0-4.5.3, 4.6.0-4.6.1 - Remote Code Execution via Public Comment or Posting

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-2106. PoCs published by dab.

AI-analyzed exploit summary This Perl script exploits CVE-2005-2106, a PHP code injection vulnerability in Drupal's comment system. It allows remote command execution by injecting malicious PHP code into a comment, which is then executed by the server.

Description

Unknown vulnerability in Drupal 4.5.0 through 4.5.3, 4.6.0, and 4.6.1 allows remote attackers to execute arbitrary PHP code via a public comment or posting.

Exploits (1)

exploitdb WORKING POC VERIFIED
by dab · perlwebappsphp
https://www.exploit-db.com/exploits/1088

This Perl script exploits CVE-2005-2106, a PHP code injection vulnerability in Drupal's comment system. It allows remote command execution by injecting malicious PHP code into a comment, which is then executed by the server.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Drupal (versions affected by CVE-2005-2106)
No auth needed
Prerequisites: Target Drupal installation vulnerable to CVE-2005-2106 · Ability to post comments (anonymous or authenticated)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/15872
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=112015287827452&w=2
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2005/dsa-745
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/14110

Scores

EPSS 0.0320
EPSS Percentile 86.5%

Details

Status published
Products (6)
drupal/drupal 4.5.0
drupal/drupal 4.5.1
drupal/drupal 4.5.2
drupal/drupal 4.5.3
drupal/drupal 4.6.0
drupal/drupal 4.6.1
Published Jul 05, 2005
Tracked Since Feb 18, 2026