2 matches found
CVE-2026-14380
creationtimestamp| type| source ---|---|--- 2026-07-07 22:59:45+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mq3pggr5xk24 2026-07-08 00:00:45+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mq3stiucln2f 2026-07-08 00:00:45+00:00| seen|...
CVE-2026-14380 DBI versions before 1.650 for Perl are vulnerable to code injection via caller-influenced Profile
DBI versions before 1.650 for Perl are vulnerable to code injection via caller-influenced Profile. When a string is assigned to a DBI handle's Profile attribute, DBI splits it into path, package and arguments, and interpolates the package part in a string eval with no validation of the package...