EIP-2026-106580

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-106580. PoCs published by nu11secur1ty.

AI-analyzed exploit summary This exploit demonstrates a web cache poisoning vulnerability in Drupal 10.1.2, allowing an attacker to induce the application to perform server-side HTTP requests to arbitrary domains via the Host header. The PoC includes a crafted HTTP request that triggers an external service interaction, confirmed by responses from Burp Collaborator and an attacker-controlled server.

Description

Drupal 10.1.2 - web-cache-poisoning-External-service-interaction

Exploits (1)

exploitdb WORKING POC

by nu11secur1ty · textwebappsphp

https://www.exploit-db.com/exploits/51723

View Code ZIP pw:eip

This exploit demonstrates a web cache poisoning vulnerability in Drupal 10.1.2, allowing an attacker to induce the application to perform server-side HTTP requests to arbitrary domains via the Host header. The PoC includes a crafted HTTP request that triggers an external service interaction, confirmed by responses from Burp Collaborator and an attacker-controlled server.

Classification

Working Poc 90%

Attack Type

Ssrf

Complexity

Trivial

Reliability

Reliable

Target: Drupal 10.1.2

No auth needed

Prerequisites: Access to the target Drupal instance · Ability to send crafted HTTP requests

MITRE ATT&CK

T1189 - Drive-by Compromise T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Drupal 10.1.2 - web-cache-poisoning-External-service-interaction

Exploitation Summary

Description

Exploits (1)

Details