Mojolicious — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in Mojolicious, with AI-generated Chinese analysis, references, and POCs.

Vendor: SRI

CVE ID	Title	CVSS	Severity	Published
CVE-2024-58134	Mojolicious versions from 0.999922 for Perl uses a hard coded string, or the application's class name, as an HMAC session cookie secret by default CWE-321	7.7^AI	High^AI	2025-05-03
CVE-2024-58135	Mojolicious versions from 7.28 for Perl will generate weak HMAC session cookie secrets via "mojo generate app" by default CWE-338	7.5^AI	High^AI	2025-05-03

All 2 known CVE vulnerabilities affecting Mojolicious with full Chinese analysis, references, and POCs where available.