RSS   Vulnerabilities for 'APP'   RSS

2014-06-04
 
CVE-2012-6141

CWE-94
 

 
The App::Context module 0.01 through 0.968 for Perl does not properly use the Storable::thaw function, which allows remote attackers to execute arbitrary code via a crafted request to (1) App::Session::Cookie or (2) App::Session::HTMLHidden, which is not properly handled when it is deserialized.

 


Copyright 2017, cxsecurity.com