PT-2007-6453 · Drupal · Drupal

Shankar

Published

2007-10-12

Updated

2018-10-15

CVE-2007-5416

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Drupal versions prior to 5.2

Description: The issue allows remote attackers to execute arbitrary PHP code by invoking the drupal eval function through a callback parameter to the default URI. This can be achieved by including a numeric parameter with a value matching an alphanumeric parameter's hash value in the input data. For example, this can be demonstrated by the menu[callbacks][1][callback] parameter.

Recommendations: For versions prior to 5.2, consider disabling the drupal eval function as a temporary workaround until a proper fix is applied. Restrict access to the default URI to minimize the risk of exploitation. Avoid using the menu[callbacks][1][callback] parameter in the affected URI until the issue is resolved.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-189

Related Identifiers

CVE-2007-5416

Affected Products

Drupal

PT-2007-6453 · Drupal · Drupal

CVE-2007-5416

Weakness Enumeration

Related Identifiers

Affected Products

References · 6