AI (Artificial Intelligence) - Moderately critical - Gadget Chain - SA-CONTRIB-2025-022
Description
OS Command Injection in Drupal AI module allows authenticated attackers to execute arbitrary OS commands, potentially leading to full site compromise.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
OS Command Injection in Drupal AI module allows authenticated attackers to execute arbitrary OS commands, potentially leading to full site compromise.
Vulnerability
Overview
CVE-2025-31693 is an OS Command Injection vulnerability in the Drupal AI (Artificial Intelligence) module, affecting versions before 1.0.5. The software fails to properly neutralize special elements in OS commands, allowing an attacker to inject arbitrary commands [1].
Exploitation
The vulnerability requires the ability to submit crafted input to the AI module's command processing. While specific prerequisites are not detailed, typical command injection attacks are performed via unsanitized user input fields. An attacker with sufficient access could execute arbitrary operating system commands.
Impact
Successful exploitation enables remote code execution on the underlying server, potentially leading to full site compromise, data exfiltration, or lateral movement within the network.
Mitigation
The Drupal AI module has addressed this issue in version 1.0.5. Users are strongly advised to update to this version or later [2].
AI Insight generated on May 20, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
drupal/aiPackagist | < 1.0.5 | 1.0.5 |
Affected products
2- Drupal/AI (Artificial Intelligence)v5Range: 0.0.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- github.com/advisories/GHSA-vx9m-rfxq-gr74ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2025-31693ghsaADVISORY
- www.drupal.org/sa-contrib-2025-022ghsaWEB
News mentions
0No linked articles in our index yet.