Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Plack::Middleware::Session::Cookie versions through 0.21 for Perl allows remote code execution
Vulnerability Description
Plack::Middleware::Session::Cookie versions through 0.21 for Perl allows remote code execution. Plack::Middleware::Session::Cookie versions through 0.21 has a security vulnerability where it allows an attacker to execute arbitrary code on the server during deserialization of the cookie data, when there is no secret used to sign the cookie.
CVSS Information
N/A
Vulnerability Type
在信任Cookie未进行验证与完整性检查
Vulnerability Title
Plack::Middleware::Session::Cookie 安全漏洞
Vulnerability Description
Plack::Middleware::Session::Cookie是MIYAGAWA个人开发者的一个基于Perl的Web会话管理中间件组件。 Plack::Middleware::Session::Cookie 0.21及之前版本存在安全漏洞,该漏洞源于反序列化过程中未使用密钥签名,可能导致远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A