Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

andy armstrong cgi.pm vulnerabilities and exploits

(subscribe to this query)
540
VMScore
CVE-2012-5526
CGI.pm module prior to 3.63 for Perl does not properly escape newlines in (1) Set-Cookie or (2) P3P headers, which might allow remote malicious users to inject arbitrary headers into responses from applications that use CGI.pm.
Andy Armstrong Cgi.pm
383
VMScore
CVE-2010-4410
CRLF injection vulnerability in the header function in (1) CGI.pm prior to 3.50 and (2) Simple.pm in CGI::Simple 1.112 and previous versions allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-white...
Andy Armstrong Cgi.pmAndy Armstrong Cgi.pm 1.4Andy Armstrong Cgi.pm 1.42Andy Armstrong Cgi.pm 1.43Andy Armstrong Cgi.pm 1.44Andy Armstrong Cgi.pm 1.45Andy Armstrong Cgi.pm 1.50Andy Armstrong Cgi.pm 1.51Andy Armstrong Cgi.pm 1.52Andy Armstrong Cgi.pm 1.53Andy Armstrong Cgi.pm 1.54Andy Armstrong Cgi.pm 1.55Andy Armstrong Cgi.pm 1.56Andy Armstrong Cgi.pm 1.57Andy Armstrong Cgi.pm 2.0Andy Armstrong Cgi.pm 2.01Andy Armstrong Cgi.pm 2.13Andy Armstrong Cgi.pm 2.14Andy Armstrong Cgi.pm 2.15Andy Armstrong Cgi.pm 2.16Andy Armstrong Cgi.pm 2.17Andy Armstrong Cgi.pm 2.18
383
VMScore
CVE-2010-4411
Unspecified vulnerability in CGI.pm 3.50 and previous versions allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unknown vectors. NOTE: this issue exists because of an incomplete fix for CVE-2010-2761.
Andy Armstrong Cgi.pm 3.01Andy Armstrong Cgi.pm 3.24Andy Armstrong Cgi.pm 2.49Andy Armstrong Cgi.pm 3.20Andy Armstrong Cgi.pm 2.26Andy Armstrong Cgi.pm 3.05Andy Armstrong Cgi.pm 2.83Andy Armstrong Cgi.pm 3.42Andy Armstrong Cgi.pm 2.45Andy Armstrong Cgi.pm 2.44Andy Armstrong Cgi.pm 3.35Andy Armstrong Cgi.pm 2.51Andy Armstrong Cgi.pm 3.32Andy Armstrong Cgi.pm 3.14Andy Armstrong Cgi.pm 3.44Andy Armstrong Cgi.pm 2.0Andy Armstrong Cgi.pm 2.62Andy Armstrong Cgi.pm 2.70Andy Armstrong Cgi.pm 2.75Andy Armstrong Cgi.pm 2.28Andy Armstrong Cgi.pm 2.84Andy Armstrong Cgi.pm 2.99
383
VMScore
CVE-2010-2761
The multipart_init function in (1) CGI.pm prior to 3.50 and (2) Simple.pm in CGI::Simple 1.112 and previous versions uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote malicious users to inject arbitrary HTTP headers and c...
Andy Armstrong Cgi.pmAndy Armstrong Cgi.pm 1.4Andy Armstrong Cgi.pm 1.42Andy Armstrong Cgi.pm 1.43Andy Armstrong Cgi.pm 1.44Andy Armstrong Cgi.pm 1.45Andy Armstrong Cgi.pm 1.50Andy Armstrong Cgi.pm 1.51Andy Armstrong Cgi.pm 1.52Andy Armstrong Cgi.pm 1.53Andy Armstrong Cgi.pm 1.54Andy Armstrong Cgi.pm 1.55Andy Armstrong Cgi.pm 1.56Andy Armstrong Cgi.pm 1.57Andy Armstrong Cgi.pm 2.0Andy Armstrong Cgi.pm 2.01Andy Armstrong Cgi.pm 2.13Andy Armstrong Cgi.pm 2.14Andy Armstrong Cgi.pm 2.15Andy Armstrong Cgi.pm 2.16Andy Armstrong Cgi.pm 2.17Andy Armstrong Cgi.pm 2.18
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversalCVE-2024-33545CVE-2024-35725CVE-2024-32704overflowfile uploadCVE-2024-0230CVE-2024-32705CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook