Description

Unknown vulnerability in Drupal 4.5.0 through 4.5.3, 4.6.0, and 4.6.1 allows remote attackers to execute arbitrary PHP code via a public comment or posting.

Remediation

References

CVE-2005-2106

Related Vulnerabilities

Jenkins Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-1000864)

ReviveAdserver Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-7364)

Zope Web Application Server CVE-2011-3587 Vulnerability (CVE-2011-3587)

WordPress 5.5.x Multiple Vulnerabilities (5.5 - 5.5.10)

WordPress Plugin Gallery-Flagallery Photo Portfolio Information Disclosure (4.24)

Severity

Medium

Classification

CVE-2005-2106

Tags

Missing Update Known Vulnerabilities