Skip to main content

Catalyst Plugin Static Simple

1 CVEs product

Monthly

CVE-2017-16248 HIGH This Week

The Catalyst-Plugin-Static-Simple module before 0.34 for Perl allows remote attackers to read arbitrary files if there is a '.' character anywhere in the pathname, which differs from the intended. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Catalyst Plugin Static Simple
NVD
CVSS 3.0
7.5
EPSS
0.3%
EPSS 0% CVSS 7.5
HIGH This Week

The Catalyst-Plugin-Static-Simple module before 0.34 for Perl allows remote attackers to read arbitrary files if there is a '.' character anywhere in the pathname, which differs from the intended. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Catalyst Plugin Static Simple
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy