4 matches found
CVE-2026-13082
GD::SecurityImage versions through 1.75 for Perl use rand to generate secrets. The random method creates the challenge text used for the CAPTCHA by sampling characters from an array using Perl's built-in rand function, and generates a by default six-character string. The built-in rand function is...
CVE-2026-13082 GD::SecurityImage versions through 1.75 for Perl use rand to generate secrets
GD::SecurityImage versions through 1.75 for Perl use rand to generate secrets. The random method creates the challenge text used for the CAPTCHA by sampling characters from an array using Perl's built-in rand function, and generates a by default six-character string. The built-in rand function is...
CVE-2026-13082
CVE-2026-13082 affects GD::SecurityImage for Perl (versions through 1.75). The vulnerability arises because the CAPTCHA secret text is generated by sampling from a character set using Perl’s built-in rand, which is not suitable for security applications due to predictability and reversibility. Im...
PT-2026-60744
GD::SecurityImage versions through 1.75 for Perl use rand to generate secrets. The random method creates the challenge text used for the CAPTCHA by sampling characters from an array using Perl's built-in rand function, and generates a by default six-character string. The built-in rand function is...