Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
perl vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-34753
A CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause remote root exploit when the command is compromised. Affected Products: SpaceLogic C-Bus Home Controller (5200WHC2), formerly known...
Schneider-electric Spacelogic C-bus Home Controller Firmware
1 Github repository
6.5
CVSSv3
CVE-2022-31081
HTTP::Daemon is a simple http server class written in perl. Versions before 6.15 are subject to a vulnerability which could potentially be exploited to gain privileged access to APIs or poison intermediate caches. It is uncertain how large the risks are, most Perl based applicati...
Http\\ \\ Daemon Project
Debian Debian Linux 10.0
7.8
CVSSv3
CVE-2022-30688
needrestart 0.8 up to and including 3.5 prior to 3.6 is prone to local privilege escalation. Regexes to detect the Perl, Python, and Ruby interpreters are not anchored, allowing a local user to escalate privileges when needrestart tries to detect if interpreters are using old sou...
Needrestart Project Needrestart
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
7.2
CVSSv3
CVE-2021-41550
Leostream Connection Broker 9.0.40.17 allows administrator to upload and execute Perl code.
Leostream Connection Broker 9.0.40.17
6.5
CVSSv3
CVE-2020-16155
The CPAN::Checksums package 2.12 for Perl does not uniquely define signed data.
Cpan\\ \\ Checksums Project
7.8
CVSSv3
CVE-2020-16156
CPAN 2.28 allows Signature Verification Bypass.
Perl Comprehensive Perl Archive Network 2.28
Fedoraproject Fedora 34
Fedoraproject Fedora 35
7.8
CVSSv3
CVE-2020-16154
The App::cpanminus package 1.7044 for Perl allows Signature Verification Bypass.
App\\ \\ Cpanminus Project
Fedoraproject Fedora 35
7.8
CVSSv3
CVE-2021-36770
Encode.pm, as distributed in Perl up to and including 5.34.0, allows local users to gain privileges via a Trojan horse Encode::ConfigLocal library (in the current working directory) that preempts dynamic module loading. Exploitation requires an unusual configuration, and certain ...
P5-encode Project P5-encode
Fedoraproject Fedora 34
Fedoraproject Fedora 33
7.5
CVSSv3
CVE-2021-38587
In cPanel prior to 96.0.13, scripts/fix-cpanel-perl mishandles the creation of temporary files (SEC-586).
Cpanel Cpanel
8.1
CVSSv3
CVE-2021-38589
In cPanel prior to 96.0.13, scripts/fix-cpanel-perl does not properly restrict the overwriting of files (SEC-588).
Cpanel Cpanel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »