Lucene search
K

13 matches found

NVD
NVD
added yesterday5 views

CVE-2026-12746

Dancer2::Plugin::Auth::OAuth::Provider versions before 0.23 for Perl do not support the OAuth 2.0 state parameter. The authenticationurl method builds the provider authorization redirect without issuing a state value, and the callback method exchanges the callback code and registers the resulting...

Exploits0References4
EUVD
EUVD
added yesterday6 views

EUVD-2026-41686

Dancer2::Plugin::Auth::OAuth::Provider versions before 0.23 for Perl do not support the OAuth 2.0 state parameter. The authenticationurl method builds the provider authorization redirect without issuing a state value, and the callback method exchanges the callback code and registers the resulting...

5.9AI score
Exploits0References3
Cvelist
Cvelist
added yesterday19 views

CVE-2026-12746 Dancer2::Plugin::Auth::OAuth::Provider versions before 0.23 for Perl do not support the OAuth 2.0 state parameter

Dancer2::Plugin::Auth::OAuth::Provider versions before 0.23 for Perl do not support the OAuth 2.0 state parameter. The authenticationurl method builds the provider authorization redirect without issuing a state value, and the callback method exchanges the callback code and registers the resulting...

Exploits0References3
CVE
CVE
added 2026/06/15 9:19 p.m.14 views

CVE-2026-11832

CVE-2026-11832 affects Dancer2::Plugin::Auth::OAuth for Perl, specifically versions before 0.22. The root cause is a predictable nonce: the default nonce is generated using an MD5 hash of the epoch time, enabling potential predictability in authentication flows. The available documents do not pro...

9.1CVSS5.3AI score0.00327EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.7 views

Mageia: Security Advisory (MGASA-2018-0428)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.18 views

Fedora 28 : perl-Dancer2 (2018-ded377a782)

Dancer2 0.206000 addresses several potential security issues. There is a potential RCE with regards to Storable. Dancer2 adds session ID validation to the session engine so that session backends based on Storable can reject malformed session IDs that may lead to exploitation of the RCE. Parsing...

5.6AI score
Exploits0References1
Mageia
Mageia
added 2018/11/03 11:55 a.m.98 views

Updated perl-Dancer2 packages fix security vulnerabilities

Dancer2 0.206000 addresses several potential security issues. There is a potential RCE with regards to Storable. Dancer2 adds session ID validation to the session engine so that session backends based on Storable can reject malformed session IDs that may lead to exploitation of the RCE. Parsing...

1.7AI score
Exploits0References2
OSV
OSV
added 2018/11/03 11:55 a.m.4 views

MGASA-2018-0428 Updated perl-Dancer2 packages fix security vulnerabilities

Dancer2 0.206000 addresses several potential security issues. There is a potential RCE with regards to Storable. Dancer2 adds session ID validation to the session engine so that session backends based on Storable can reject malformed session IDs that may lead to exploitation of the RCE. Parsing...

7.5AI score
Exploits0References3
OpenVAS
OpenVAS
added 2018/05/16 12:0 a.m.12 views

Fedora Update for perl-Dancer2 FEDORA-2018-ded377a782

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2018/05/12 12:0 a.m.14 views

Fedora Update for perl-Dancer2 FEDORA-2018-59eb033684

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/05/11 12:0 a.m.19 views

Fedora 27 : perl-Dancer2 (2018-59eb033684)

Dancer2 0.206000 addresses several potential security issues. There is a potential RCE with regards to Storable. Dancer2 adds session ID validation to the session engine so that session backends based on Storable can reject malformed session IDs that may lead to exploitation of the RCE. Parsing...

5.6AI score
Exploits0References1
Fedora
Fedora
added 2018/05/10 7:15 p.m.15 views

[SECURITY] Fedora 27 Update: perl-Dancer2-0.206000-1.fc27

Dancer2 is the new generation of Dancer, the lightweight web-framework for Perl. It is a complete rewrite based on Moo and is meant to be easy and fun...

1.2AI score
Exploits0
Fedora
Fedora
added 2018/05/09 9:28 p.m.14 views

[SECURITY] Fedora 28 Update: perl-Dancer2-0.206000-1.fc28

Dancer2 is the new generation of Dancer, the lightweight web-framework for Perl. It is a complete rewrite based on Moo and is meant to be easy and fun...

1.2AI score
Exploits0
Rows per page
Query Builder