Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
perl vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2022-31081
HTTP::Daemon is a simple http server class written in perl. Versions before 6.15 are subject to a vulnerability which could potentially be exploited to gain privileged access to APIs or poison intermediate caches. It is uncertain how large the risks are, most Perl based applicati...
Http\\ \\ Daemon Project
Debian Debian Linux 10.0
4.6
CVSSv2
CVE-2022-30688
needrestart 0.8 up to and including 3.5 prior to 3.6 is prone to local privilege escalation. Regexes to detect the Perl, Python, and Ruby interpreters are not anchored, allowing a local user to escalate privileges when needrestart tries to detect if interpreters are using old sou...
Needrestart Project Needrestart
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
6.5
CVSSv2
CVE-2021-41550
Leostream Connection Broker 9.0.40.17 allows administrator to upload and execute Perl code.
Leostream Connection Broker 9.0.40.17
6.8
CVSSv2
CVE-2020-16156
CPAN 2.28 allows Signature Verification Bypass.
Perl Comprehensive Perl Archive Network 2.28
Fedoraproject Fedora 34
Fedoraproject Fedora 35
4
CVSSv2
CVE-2020-16155
The CPAN::Checksums package 2.12 for Perl does not uniquely define signed data.
Cpan\\ \\ Checksums Project
6.8
CVSSv2
CVE-2020-16154
The App::cpanminus package 1.7044 for Perl allows Signature Verification Bypass.
App\\ \\ Cpanminus Project
Fedoraproject Fedora 35
5
CVSSv2
CVE-2021-38587
In cPanel prior to 96.0.13, scripts/fix-cpanel-perl mishandles the creation of temporary files (SEC-586).
Cpanel Cpanel
5.5
CVSSv2
CVE-2021-38589
In cPanel prior to 96.0.13, scripts/fix-cpanel-perl does not properly restrict the overwriting of files (SEC-588).
Cpanel Cpanel
6.8
CVSSv2
CVE-2021-36770
Encode.pm, as distributed in Perl up to and including 5.34.0, allows local users to gain privileges via a Trojan horse Encode::ConfigLocal library (in the current working directory) that preempts dynamic module loading. Exploitation requires an unusual configuration, and certain ...
P5-encode Project P5-encode
Fedoraproject Fedora 34
Fedoraproject Fedora 33
5
CVSSv2
CVE-2012-1102
It exists that the XML::Atom Perl module before version 0.39 did not disable external entities when parsing XML from potentially untrusted sources. This may allow malicious users to gain read access to otherwise protected resources, depending on how the library is used.
Xml\\ \\ Atom Project
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »