Mojolicious@0.8006 Security Vulnerabilities and Issues — Mojolicious@0.8006 CVE List

Lucene search

MojoliciousMojolicious0.8006

5 matches found

CVE•added 2011/04/29 10:55 p.m.•44 views

CVE-2011-1589

Directory traversal vulnerability in Path.pm in Mojolicious before 1.16 allows remote attackers to read arbitrary files via a %2f..%2f (encoded slash dot dot slash) in a URI.

5CVSS6.4AI score0.02106EPSS

CVE•added 2011/05/03 12:55 a.m.•42 views

CVE-2011-1841

Cross-site scripting (XSS) vulnerability in the link_to helper in Mojolicious before 1.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.5AI score0.00295EPSS

CVE•added 2011/05/03 12:55 a.m.•39 views

CVE-2010-4802

Commands.pm in Mojolicious before 0.999928 does not properly perform CGI environment detection, which has unspecified impact and remote attack vectors.

10CVSS6.6AI score0.00507EPSS

CVE•added 2011/05/03 12:55 a.m.•37 views

CVE-2010-4803

Mojolicious before 0.999927 does not properly implement HMAC-MD5 checksums, which has unspecified impact and remote attack vectors.

10CVSS6.5AI score0.00458EPSS

CVE•added 2011/05/03 12:55 a.m.•34 views

CVE-2009-5074

Unspecified vulnerability in the MojoX::Dispatcher::Static implementation in Mojolicious before 0.991250 has unknown impact and attack vectors.

10CVSS6.7AI score0.00447EPSS