MetaCPAN Net::CIDR::Set 安全漏洞

MetaCPAN Net::CIDR::Set is a library from the MetaCPAN Foundation. Versions of MetaCPAN Net::CIDR::Set prior to 0.24 contained a security vulnerability. This vulnerability stemmed from improper handling of leading zeros in IP CIDR addresses, which could lead to bypassing IP-based access controls...

MetaCPAN WWW::OAuth 安全漏洞

MetaCPAN WWW::OAuth is a Perl authentication library developed by the MetaCPAN Foundation. Versions of MetaCPAN WWW::OAuth 1.000 and earlier contained a security vulnerability. This vulnerability stemmed from using the rand function as the default entropy source for encryption functions, which is...

MetaCPAN HarfBuzz::Shaper security vulnerability

MetaCPAN HarfBuzz::Shaper is an interface extension module of the MetaCPAN Foundation. Versions of MetaCPAN HarfBuzz::Shaper prior to 0.032 contained a security vulnerability. This vulnerability stemmed from null pointer dereferencing in the bundled libraries, which could lead to null pointer...

MetaCPAN Crypt::RandomEncryption 安全漏洞

MetaCPAN Crypt::RandomEncryption is a Perl library from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN Crypt::RandomEncryption version 0.01, which stems from the use of an insecure rand function for encryption, which may result in insufficient encryption strength...

MetaCPAN Apache::AuthAny::Cookie 安全漏洞

MetaCPAN Apache::AuthAny::Cookie is a Perl authentication module from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN Apache::AuthAny::Cookie version 0.201 and earlier, which stems from the use of MD5 hash and rand functions to generate insecure session IDs, which could lead ...

MetaCPAN JSON::SIMD 安全漏洞

MetaCPAN JSON::SIMD is a JSON codec module in the Perl language from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN JSON::SIMD versions prior to 1.07, which stems from an integer buffer overflow that could lead to a denial of service attack...

MetaCPAN JSON::XS 安全漏洞

MetaCPAN JSON::XS is a JSON codec module in the Perl language from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN JSON::XS versions prior to 4.04 that stems from an integer buffer overflow that could lead to a denial of service attack...

MetaCPAN CGI::Simple 安全漏洞

MetaCPAN CGI::Simple is a module for Perl from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN CGI::Simple versions prior to 1.282, which stems from HTTP response splitting and could lead to reflective cross-site scripting or open redirects...

Malicious code in metacpan (npm)

The package metacpan was found to contain malicious code...

MAL-2025-26228 Malicious code in metacpan (npm)

The package metacpan was found to contain malicious code...

MetaCPAN Net::Dropbear 安全漏洞

MetaCPAN Net::Dropbear is a lightweight SSH server and client software from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN Net::Dropbear version 0.16 and earlier, which stems from the inclusion of a dependency that may be susceptible to an integer overflow...

MetaCPAN Perl Mojolicious::Plugin::CSRF 安全特征问题漏洞

MetaCPAN Perl Mojolicious::Plugin::CSRF is a CSRF defense plugin from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN Perl Mojolicious::Plugin::CSRF version 1.03 that stems from the use of a weak random number source to generate CSRF tokens...

MetaCPAN File::Find::Rule 操作系统命令注入漏洞

MetaCPAN File::Find::Rule is a file find module from the MetaCPAN Foundation. An operating system command injection vulnerability exists in MetaCPAN File::Find::Rule version 0.34 and earlier, which stems from improper use of the open function when dealing with specially crafted filenames, and cou...

MetaCPAN IO::Compress::Brotli 安全漏洞

MetaCPAN IO::Compress::Brotli is a library from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN IO::Compress::Brotli versions prior to 0.007, which stems from a buffer overflow in the embedded Brotli inventory that could lead to a crash...

MetaCPAN Net::CIDR::Set 安全漏洞

MetaCPAN Net::CIDR::Set is a library from the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN Net::CIDR::Set versions 0.10 through 0.13 that stems from not properly handling leading zeros in IP CIDR address strings, which could lead to an access control bypass...

MetaCPAN BSON::XS 安全漏洞

MetaCPAN BSON::XS is a library of the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN BSON::XS version 0.8.4 and earlier, which stems from multiple vulnerabilities in bundled libbson 1.1.7...

MetaCPAN Crypt::CBC 安全特征问题漏洞

MetaCPAN Crypt::CBC is a component of the MetaCPAN Foundation. A security signature issue vulnerability exists in MetaCPAN Crypt::CBC versions 1.21 through 3.04, which stems from the default use of an insecure rand function as an entropy source...

MetaCPAN Net::Xero 安全漏洞

MetaCPAN Net::Xero is a component of the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN Net::Xero 0.044 and earlier versions that stems from the use of an insecure random number generator...

MetaCPAN Amon2::Auth::Site::LINE 安全漏洞

MetaCPAN Amon2::Auth::Site::LINE is a component of the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN Amon2::Auth::Site::LINE that stems from the use of an insecure random number generator...

MetaCPAN Net::Dropbox::API 安全漏洞

MetaCPAN Net::Dropbox::API is a component of the MetaCPAN Foundation. A security vulnerability exists in MetaCPAN Net::Dropbox::API version 1.9 and earlier that stems from the use of an insecure random number generator...