Filtered by vendor Mojolicious Subscriptions

Search

Switch to Advanced Search (Beta)
Total 8 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2011-1841 1 Mojolicious 1 Mojolicious 2025-04-11 N/A
Cross-site scripting (XSS) vulnerability in the link_to helper in Mojolicious before 1.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2009-5074 1 Mojolicious 1 Mojolicious 2025-04-11 N/A
Unspecified vulnerability in the MojoX::Dispatcher::Static implementation in Mojolicious before 0.991250 has unknown impact and attack vectors.
CVE-2010-4802 1 Mojolicious 1 Mojolicious 2025-04-11 N/A
Commands.pm in Mojolicious before 0.999928 does not properly perform CGI environment detection, which has unspecified impact and remote attack vectors.
CVE-2010-4803 1 Mojolicious 1 Mojolicious 2025-04-11 N/A
Mojolicious before 0.999927 does not properly implement HMAC-MD5 checksums, which has unspecified impact and remote attack vectors.
CVE-2011-1589 1 Mojolicious 1 Mojolicious 2025-04-11 N/A
Directory traversal vulnerability in Path.pm in Mojolicious before 1.16 allows remote attackers to read arbitrary files via a %2f..%2f (encoded slash dot dot slash) in a URI.
CVE-2018-25100 1 Mojolicious 1 Mojolicious 2025-04-10 5.3 Medium
The Mojolicious module before 7.66 for Perl may leak cookies in certain situations related to multiple similar cookies for the same domain. This affects Mojo::UserAgent::CookieJar.
CVE-2021-47208 1 Mojolicious 1 Mojolicious 2025-03-20 4.3 Medium
The Mojolicious module before 9.11 for Perl has a bug in format detection that can potentially be exploited for denial of service.
CVE-2020-36829 1 Mojolicious 1 Mojolicious 2025-03-13 7.5 High
The Mojolicious module before 8.65 for Perl is vulnerable to secure_compare timing attacks that allow an attacker to guess the length of a secret string. Only versions after 1.74 are affected.