34 matches found
MetaCPAN Net::CIDR::Set 安全漏洞
MetaCPAN Net::CIDR::Set is a library from the MetaCPAN Foundation. Versions of MetaCPAN Net::CIDR::Set prior to 0.24 contained a security vulnerability. This vulnerability stemmed from improper handling of leading zeros in IP CIDR addresses, which could lead to bypassing IP-based access controls...
MetaCPAN WWW::OAuth 安全漏洞
MetaCPAN WWW::OAuth is a Perl authentication library developed by the MetaCPAN Foundation. Versions of MetaCPAN WWW::OAuth 1.000 and earlier contained a security vulnerability. This vulnerability stemmed from using the rand function as the default entropy source for encryption functions, which is...
MetaCPAN HarfBuzz::Shaper security vulnerability
MetaCPAN HarfBuzz::Shaper is an interface extension module of the MetaCPAN Foundation. Versions of MetaCPAN HarfBuzz::Shaper prior to 0.032 contained a security vulnerability. This vulnerability stemmed from null pointer dereferencing in the bundled libraries, which could lead to null pointer...
MetaCPAN Crypt::RandomEncryption 安全漏洞
MetaCPAN Crypt::RandomEncryption is a Perl library from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN Crypt::RandomEncryption version 0.01, which stems from the use of an insecure rand function for encryption, which may result in insufficient encryption strength...
MetaCPAN Apache::AuthAny::Cookie 安全漏洞
MetaCPAN Apache::AuthAny::Cookie is a Perl authentication module from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN Apache::AuthAny::Cookie version 0.201 and earlier, which stems from the use of MD5 hash and rand functions to generate insecure session IDs, which could lead ...
MetaCPAN JSON::SIMD 安全漏洞
MetaCPAN JSON::SIMD is a JSON codec module in the Perl language from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN JSON::SIMD versions prior to 1.07, which stems from an integer buffer overflow that could lead to a denial of service attack...
MetaCPAN JSON::XS 安全漏洞
MetaCPAN JSON::XS is a JSON codec module in the Perl language from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN JSON::XS versions prior to 4.04 that stems from an integer buffer overflow that could lead to a denial of service attack...
MetaCPAN CGI::Simple 安全漏洞
MetaCPAN CGI::Simple is a module for Perl from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN CGI::Simple versions prior to 1.282, which stems from HTTP response splitting and could lead to reflective cross-site scripting or open redirects...
MAL-2025-26228 Malicious code in metacpan (npm)
The package metacpan was found to contain malicious code...
Malicious code in metacpan (npm)
The package metacpan was found to contain malicious code...
MetaCPAN Net::Dropbear 安全漏洞
MetaCPAN Net::Dropbear is a lightweight SSH server and client software from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN Net::Dropbear version 0.16 and earlier, which stems from the inclusion of a dependency that may be susceptible to an integer overflow...
MetaCPAN Perl Mojolicious::Plugin::CSRF 安全特征问题漏洞
MetaCPAN Perl Mojolicious::Plugin::CSRF is a CSRF defense plugin from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN Perl Mojolicious::Plugin::CSRF version 1.03 that stems from the use of a weak random number source to generate CSRF tokens...
MetaCPAN File::Find::Rule 操作系统命令注入漏洞
MetaCPAN File::Find::Rule is a file find module from the MetaCPAN Foundation. An operating system command injection vulnerability exists in MetaCPAN File::Find::Rule version 0.34 and earlier, which stems from improper use of the open function when dealing with specially crafted filenames, and cou...
MetaCPAN IO::Compress::Brotli 安全漏洞
MetaCPAN IO::Compress::Brotli is a library from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN IO::Compress::Brotli versions prior to 0.007, which stems from a buffer overflow in the embedded Brotli inventory that could lead to a crash...
MetaCPAN Net::CIDR::Set 安全漏洞
MetaCPAN Net::CIDR::Set is a library from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN Net::CIDR::Set versions 0.10 through 0.13 that stems from not properly handling leading zeros in IP CIDR address strings, which could lead to an access control bypass...
MetaCPAN BSON::XS 安全漏洞
MetaCPAN BSON::XS is a library of the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN BSON::XS version 0.8.4 and earlier, which stems from multiple vulnerabilities in bundled libbson 1.1.7...
MetaCPAN Crypt::CBC 安全特征问题漏洞
MetaCPAN Crypt::CBC is a component of the MetaCPAN Foundation. A security signature issue vulnerability exists in MetaCPAN Crypt::CBC versions 1.21 through 3.04, which stems from the default use of an insecure rand function as an entropy source...
MetaCPAN WebService::Xero 安全漏洞
MetaCPAN WebService::Xero is a component of the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN WebService::Xero version 0.11 and earlier that stems from the use of an insecure random number generator...
MetaCPAN Net::Xero 安全漏洞
MetaCPAN Net::Xero is a component of the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN Net::Xero 0.044 and earlier versions that stems from the use of an insecure random number generator...
MetaCPAN Amon2::Auth::Site::LINE 安全漏洞
MetaCPAN Amon2::Auth::Site::LINE is a component of the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN Amon2::Auth::Site::LINE that stems from the use of an insecure random number generator...