Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
perl perl 1.42 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-1271
The Mail::Mailer Perl module in the perl-MailTools package 1.47 and previous versions uses mailx as the default mailer, which allows remote malicious users to execute arbitrary commands by inserting them into the mail body, which is then processed by mailx.
Perl-mailtools Perl-mailtools 1.44
Perl-mailtools Perl-mailtools 1.15
Perl-mailtools Perl-mailtools 1.13
Perl-mailtools Perl-mailtools 1.40
Perl-mailtools Perl-mailtools 1.1401
Perl-mailtools Perl-mailtools 1.42
Perl-mailtools Perl-mailtools 1.47
NA
CVE-2011-2728
The bsd_glob function in the File::Glob module for Perl prior to 5.14.2 allows context-dependent malicious users to cause a denial of service (crash) via a glob expression with the GLOB_ALTDIRFUNC flag, which triggers an uninitialized pointer dereference.
Perl Perl 2.10.0
Perl Perl 2.10.3
Perl Perl 5.8.0
Perl Perl 2.6.4
Perl Perl 5.6.0
Perl Perl 2.3.0
Perl Perl 2.11.3
Perl Perl 2.15.0
Perl Perl 2.17.1
Perl Perl 5.8.4
Perl Perl 1.44
Perl Perl 2.8.7
Perl Perl 5.12.0
Perl Perl 5.13.10
Perl Perl 2.11.6
Perl Perl 2.7.2
Perl Perl 2.11.0
Perl Perl 5.8.1
Perl Perl 2.11.1
Perl Perl 5.8.9
Perl Perl 1.42
Perl Perl 2.4.0
NA
CVE-2012-1151
Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl) module prior to 2.19.0 for Perl allow remote PostgreSQL database servers to cause a denial of service (process crash) via format string specifiers in (1) a crafted database warning to the...
Perl Perl 0.97
Perl Perl 0.91
Perl Perl 2.10.0
Perl Perl 2.10.3
Perl Perl 2.6.4
Perl Perl 2.3.0
Perl Perl 2.11.3
Perl Perl 2.15.0
Perl Perl 2.17.1
Perl Perl 1.44
Perl Perl 2.8.7
Perl Perl 2.11.6
Perl Perl 2.7.2
Perl Perl 0.80
Perl Perl 2.11.0
Perl Perl 2.11.1
Perl Perl 0.96
Perl Perl 1.42
Perl Perl 2.4.0
Perl Perl 2.8.5
Perl Perl 2.10.7
Perl Perl 2.11.2
NA
CVE-2011-2939
Off-by-one error in the decode_xs function in Unicode/Unicode.xs in the Encode module prior to 2.44, as used in Perl prior to 5.15.6, might allow context-dependent malicious users to cause a denial of service (memory corruption) via a crafted Unicode string, which triggers a heap...
Perl Perl 5.14.1
Dan Kogai Encode Module 1.65
Dan Kogai Encode Module 1.56
Dan Kogai Encode Module 2.19
Dan Kogai Encode Module 2.08
Dan Kogai Encode Module
Dan Kogai Encode Module 1.74
Dan Kogai Encode Module 2.20
Dan Kogai Encode Module 0.96
Perl Perl 5.8.4
Perl Perl 5.12.0
Dan Kogai Encode Module 2.17
Dan Kogai Encode Module 1.77
Perl Perl 5.13.10
Dan Kogai Encode Module 1.97
Dan Kogai Encode Module 2.13
Dan Kogai Encode Module 1.95
Dan Kogai Encode Module 1.85
Perl Perl 5.8.1
Dan Kogai Encode Module 1.54
Dan Kogai Encode Module 2.35
Perl Perl 5.8.9
NA
CVE-2009-3627
The decode_entities function in util.c in HTML-Parser prior to 3.63 allows context-dependent malicious users to cause a denial of service (infinite loop) via an incomplete SGML numeric character reference, which triggers generation of an invalid UTF-8 character.
Derrick Oswald Html-parser
Derrick Oswald Html-parser 1.42
Derrick Oswald Html-parser 1.1
Derrick Oswald Html-parser 1.41
Derrick Oswald Html-parser 1.00
Derrick Oswald Html-parser 1.3
Derrick Oswald Html-parser 1.5
Derrick Oswald Html-parser 1.6
Derrick Oswald Html-parser 1.2
Derrick Oswald Html-parser 1.4
NA
CVE-2010-2761
The multipart_init function in (1) CGI.pm prior to 3.50 and (2) Simple.pm in CGI::Simple 1.112 and previous versions uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote malicious users to inject arbitrary HTTP headers and c...
Andy Armstrong Cgi.pm
Andy Armstrong Cgi.pm 1.4
Andy Armstrong Cgi.pm 1.42
Andy Armstrong Cgi.pm 1.43
Andy Armstrong Cgi.pm 1.44
Andy Armstrong Cgi.pm 1.45
Andy Armstrong Cgi.pm 1.50
Andy Armstrong Cgi.pm 1.51
Andy Armstrong Cgi.pm 1.52
Andy Armstrong Cgi.pm 1.53
Andy Armstrong Cgi.pm 1.54
Andy Armstrong Cgi.pm 1.55
Andy Armstrong Cgi.pm 1.56
Andy Armstrong Cgi.pm 1.57
Andy Armstrong Cgi.pm 2.0
Andy Armstrong Cgi.pm 2.01
Andy Armstrong Cgi.pm 2.13
Andy Armstrong Cgi.pm 2.14
Andy Armstrong Cgi.pm 2.15
Andy Armstrong Cgi.pm 2.16
Andy Armstrong Cgi.pm 2.17
Andy Armstrong Cgi.pm 2.18
NA
CVE-2010-4410
CRLF injection vulnerability in the header function in (1) CGI.pm prior to 3.50 and (2) Simple.pm in CGI::Simple 1.112 and previous versions allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-white...
Andy Armstrong Cgi.pm
Andy Armstrong Cgi.pm 1.4
Andy Armstrong Cgi.pm 1.42
Andy Armstrong Cgi.pm 1.43
Andy Armstrong Cgi.pm 1.44
Andy Armstrong Cgi.pm 1.45
Andy Armstrong Cgi.pm 1.50
Andy Armstrong Cgi.pm 1.51
Andy Armstrong Cgi.pm 1.52
Andy Armstrong Cgi.pm 1.53
Andy Armstrong Cgi.pm 1.54
Andy Armstrong Cgi.pm 1.55
Andy Armstrong Cgi.pm 1.56
Andy Armstrong Cgi.pm 1.57
Andy Armstrong Cgi.pm 2.0
Andy Armstrong Cgi.pm 2.01
Andy Armstrong Cgi.pm 2.13
Andy Armstrong Cgi.pm 2.14
Andy Armstrong Cgi.pm 2.15
Andy Armstrong Cgi.pm 2.16
Andy Armstrong Cgi.pm 2.17
Andy Armstrong Cgi.pm 2.18
NA
CVE-2010-4411
Unspecified vulnerability in CGI.pm 3.50 and previous versions allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unknown vectors. NOTE: this issue exists because of an incomplete fix for CVE-2010-2761.
Andy Armstrong Cgi.pm 3.01
Andy Armstrong Cgi.pm 3.24
Andy Armstrong Cgi.pm 2.49
Andy Armstrong Cgi.pm 3.20
Andy Armstrong Cgi.pm 2.26
Andy Armstrong Cgi.pm 3.05
Andy Armstrong Cgi.pm 2.83
Andy Armstrong Cgi.pm 3.42
Andy Armstrong Cgi.pm 2.45
Andy Armstrong Cgi.pm 2.44
Andy Armstrong Cgi.pm 3.35
Andy Armstrong Cgi.pm 2.51
Andy Armstrong Cgi.pm 3.32
Andy Armstrong Cgi.pm 3.14
Andy Armstrong Cgi.pm 3.44
Andy Armstrong Cgi.pm 2.0
Andy Armstrong Cgi.pm 2.62
Andy Armstrong Cgi.pm 2.70
Andy Armstrong Cgi.pm 2.75
Andy Armstrong Cgi.pm 2.28
Andy Armstrong Cgi.pm 2.84
Andy Armstrong Cgi.pm 2.99
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started