Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
perl vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-3819
Eval injection vulnerability in the configure script in TWiki 4.0.0 up to and including 4.0.4 allows remote malicious users to execute arbitrary Perl code via an HTTP POST request containing a parameter name starting with "TYPEOF".
Twiki Twiki 4.0.2
Twiki Twiki 4.0.3
Twiki Twiki 4.0.0
Twiki Twiki 4.0.1
Twiki Twiki 4.0
Twiki Twiki 4.0.4
1 EDB exploit
7.5
CVSSv2
CVE-2006-3221
SQL injection vulnerability in index.php in DataLife Engine 4.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via double-encoded values in the user parameter in a userinfo subaction.
Softnews Media Group Datalife Engine
2 EDB exploits
7.5
CVSSv2
CVE-2006-0478
CRE Loaded 6.15 allows remote malicious users to perform privileged actions, including uploading and creating arbitrary files, via a direct request to files.php. NOTE: the vendor states "The initial announcement of this risk was made on our website... and it included a patch...
Cre Loaded Cre Loaded 6.15
1 EDB exploit
7.5
CVSSv2
CVE-2005-4217
Perl in Apple Mac OS X Server 10.3.9 does not properly drop privileges when using the "$<" variable to set uid, which allows malicious users to gain privileges.
Apple Mac Os X Server 10.3.9
7.5
CVSSv2
CVE-2005-3912
Format string vulnerability in miniserv.pl Perl web server in Webmin prior to 1.250 and Usermin prior to 1.180, with syslog logging enabled, allows remote malicious users to cause a denial of service (crash or memory consumption) and possibly execute arbitrary code via format str...
Webmin Webmin
Debian Debian Linux 3.1
7.5
CVSSv2
CVE-2005-2837
Multiple eval injection vulnerabilities in PlainBlack Software WebGUI prior to 6.7.3 allow remote malicious users to execute arbitrary Perl code via (1) Help.pm, (2) International.pm, or (3) WebGUI.pm.
Plainblack Webgui
7.5
CVSSv2
CVE-2005-2491
Integer overflow in pcre_compile.c in Perl Compatible Regular Expressions (PCRE) prior to 6.2, as used in multiple products such as Python, Ethereal, and PHP, allows malicious users to execute arbitrary code via quantifier values in regular expressions, which leads to a heap-base...
Pcre Pcre 5.0
Pcre Pcre 6.0
Pcre Pcre 6.1
7.5
CVSSv2
CVE-2005-1950
hints.pl in Webhints 1.03 allows remote malicious users to execute arbitrary commands via shell metacharacters in the argument.
Darryl Burgdorf Webhints 1.3
3 EDB exploits
7.5
CVSSv2
CVE-2005-1779
SQL injection vulnerability in password.asp in MaxWebPortal 1.35, 1.36, 2.0, and 20050418 Next allows remote malicious users to execute arbitrary SQL commands via the memKey parameter.
Maxwebportal Maxwebportal 1.36
Maxwebportal Maxwebportal 2005-04-18
Maxwebportal Maxwebportal 1.35
Maxwebportal Maxwebportal 2.0
3 EDB exploits
7.5
CVSSv2
CVE-2005-1787
setup.php in phpStat 1.5 allows remote malicious users to bypass authentication and gain administrator privileges by setting the $check variable.
Phpstat Phpstat -
3 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »