63 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-39051
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Attacker might be able to execute malicious Perl code in the Template toolkit, by having the admin installing an unverified 3th party package CVE-2022-39051 Not...
AIX is vulnerable to denial of service and possible code execution due to Perl (CVE-2024-8176 CVE-2024-56406)
IBM SECURITY ADVISORY First Issued: Thu Jun 26 08:09:07 CDT 2025 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/perladvisory10.asc Security Bulletin: AIX is vulnerable to denial of service and possible code execution due to Perl...
CVE-2025-30672
Mite for Perl before 0.013000 generates code with the current working directory '.' added to the @INC path similar to CVE-2016-1238. If an attacker can place a malicious file in current working directory, it may be loaded instead of the intended file, potentially leading to arbitrary code...
RHEL 6 / 7 : rh-perl524-mod_perl (RHSA-2018:2826)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2826 advisory. - modperl: arbitrary Perl code execution in the context of the user account via a user-owned .htaccess CVE-2011-2767 Note that Nessus has not...
CVE-2022-39051
Attacker might be able to execute malicious Perl code in the Template toolkit, by having the admin installing an unverified 3th party package...
CVE-2022-39051
Attacker might be able to execute malicious Perl code in the Template toolkit, by having the admin installing an unverified 3th party package...
CVE-2022-39051
CVE-2022-39051 affects OTRS/OTRS Community Edition where an admin installing an unverified third‑party package could allow execution of malicious Perl code via the Template Toolkit vulnerability. Affected products/versions include OTRS and OTRS Community Edition (see connected PTSecurity entries/...
CVE-2022-39051 Perl Code execution in Template Toolkit
Attacker might be able to execute malicious Perl code in the Template toolkit, by having the admin installing an unverified 3th party package...
CVE-2021-41550
Leostream Connection Broker 9.0.40.17 allows administrator to upload and execute Perl code...
Leostream Connection Broker 代码问题漏洞
Leostream Connection Broker is a vendor-neutral connection broker from Leostream USA that provides a single interface to manage a range of operating systems, physical and virtual desktops, and display protocols commonly found in enterprise environments. A security vulnerability exists in Leostrea...
SUSE-SU-2019:3213-1 Security update for apache2-mod_perl
This update for apache2-modperl fixes the following issues: Security issue fixed: - CVE-2011-2767: Fixed a vulnerability which could have allowed perl code execution in the context of user account bsc1156944. Other issue addressed: - Restore process name after svsetpvmg call. bsc1091625...
openSUSE Security Update : apache2-mod_perl (openSUSE-2019-2549)
This update for apache2-modperl to version 2.0.11 fixes the following issues : Security issue fixed : - CVE-2011-2767: Fixed a vulnerability which could have allowed perl code execution in the context of user account bsc1156944. Other issue addressed : - Restore process name after svsetpvmg call...
Security update for apache2-mod_perl (moderate)
openSUSE Security Update: Security update for apache2-modperl Announcement ID: openSUSE-SU-2019:2558-1 Rating: moderate References: 1091625 1156944 Cross-References: CVE-2011-2767 Affected Products: openSUSE Backports SLE-15-SP1 openSUSE Backports SLE-15 An update that solves one vulnerability an...
openSUSE: Security Advisory for apache2-mod_perl (openSUSE-SU-2019:2549-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora 28 : mod_perl (2018-0ddef94854)
This release fixes CVE-2011-2767 vulnerability an arbitrary Perl code execution in the context of the httpd server by disabling sections in non-server-level configuration. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...
Fedora 29 : mod_perl (2018-f6a5b71464)
This release fixes CVE-2011-2767 vulnerability an arbitrary Perl code execution in the context of the httpd server by disabling sections in non-server-level configuration. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...
Important: Red Hat Security Advisory: rh-perl524-mod_perl security update
An update for rh-perl524-modperl is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
mod_perl: arbitrary Perl code execution in the context of the user account via a user-owned .htaccess
modperl 2.0 through 2.0.10 allows attackers to execute arbitrary Perl code by placing it in a user-owned .htaccess file, because contrary to the documentation there is no configuration option that permits Perl code for the administrator's control of HTTP request processing without also permitting...
Important: Red Hat Security Advisory: rh-perl526-mod_perl security update
An update for rh-perl526-modperl is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Design/Logic Flaw
futomi CGI Cafe MP Form Mail CGI eCommerce before 2.0.12 on Windows allows remote attackers to execute arbitrary Perl code via unspecified vectors...