CVE-2006-2548

perlpodder < 0.5 - Remote Code Execution via Podcast URL Shell Metacharacters

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-2548. PoCs published by RedTeam Pentesting.

AI-analyzed exploit summary This exploit leverages a command injection vulnerability in Prodder by embedding a malicious command in an RSS feed enclosure URL. The payload initiates a reverse shell using netcat, demonstrating arbitrary command execution.

Description

Prodder before 0.5, and perlpodder before 0.5, allows remote attackers to execute arbitrary code via shell metacharacters in the URL of a podcast (url attribute of an enclosure tag, or $enc_url variable), which is executed when running wget.

Exploits (1)

exploitdb WORKING POC VERIFIED

by RedTeam Pentesting · textremotelinux

https://www.exploit-db.com/exploits/27902

View Code ZIP pw:eip

This exploit leverages a command injection vulnerability in Prodder by embedding a malicious command in an RSS feed enclosure URL. The payload initiates a reverse shell using netcat, demonstrating arbitrary command execution.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Prodder (version not specified)

No auth needed

Prerequisites: Vulnerable Prodder instance · Network access to the target · Netcat or similar tool on the target

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (13)

Core 13

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/26575

Third Party Advisory mailing-list x_refsource_fulldisc

http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0567.html

Exploit, Patch vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/18068

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/26568

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/434712/100/0/threaded

Vendor Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/1905

Exploit, Patch, Vendor Advisory x_refsource_misc

http://www.redteam-pentesting.de/advisories/rt-sa-2006-002.php

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/25690

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/20238

Exploit, Patch, Vendor Advisory x_refsource_misc

http://www.redteam-pentesting.de/advisories/rt-sa-2006-003.php

Patch x_refsource_confirm

http://sourceforge.net/project/shownotes.php?release_id=418189&group_id=148643

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/20208

Third Party Advisory third-party-advisory x_refsource_sreason

http://securityreason.com/securityalert/942

Scores

EPSS 0.0834

EPSS Percentile 94.2%

Details

CWE

CWE-94

Status published

Products (5)

perlpodder/perlpodder 0.2

perlpodder/perlpodder 0.3

perlpodder/perlpodder < 0.4

prodder/prodder 0.3

prodder/prodder < 0.4

Published May 23, 2006

Tracked Since Feb 18, 2026