Description

Unknown vulnerability in Drupal 4.5.0 through 4.5.3, 4.6.0, and 4.6.1 allows remote attackers to execute arbitrary PHP code via a public comment or posting.

Remediation

References

CVE-2005-2106

Related Vulnerabilities

Oracle Application Server Other Vulnerability (CVE-2006-5354)

WordPress Plugin Elementor Website Builder Cross-Site Scripting (2.8.4)

WordPress Plugin WP Floating Menu-One page navigator, sticky menu for WordPress Cross-Site Scripting (1.3.0)

WordPress Plugin Video Gallery /w YouTube, Vimeo Multiple Vulnerabilities (8.80)

WordPress Plugin Craw Data Server-Side Request Forgery (1.0.0)

Severity

Medium

Classification

CVE-2005-2106

Tags

Missing Update Known Vulnerabilities