Unrated severityNVD Advisory· Published Sep 14, 2011· Updated Jun 16, 2026
CVE-2011-2201
CVE-2011-2201
Description
The Data::FormValidator module 4.66 and earlier for Perl, when untaint_all_constraints is enabled, does not properly preserve the taint attribute of data, which might allow remote attackers to bypass the taint protection mechanism via form input.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
75cpe:2.3:a:mark_stosberg:data\:\:formvalidator:*:*:*:*:*:*:*:*+ 71 more
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:*:*:*:*:*:*:*:*range: <=4.66
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:1.10:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:1.11:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:1.3:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:1.4:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:1.5:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:1.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:1.6:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:1.7:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:1.8:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:1.9:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:1.91:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:1.92:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:1.93:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:2.00:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:2.01:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:2.02:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:2.03:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:2.04:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:2.10:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:2.11_01:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:2.11_02:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:2.11_03:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:2.11_04:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.00:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.01:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.10:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.11:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.12:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.13:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.14:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.15:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.49_1:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.50:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.51:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.52:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.53:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.54:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.55:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.56:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.57:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.58:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.59:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.60:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.61:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.62:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:3.63:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.00:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.01:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.02:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.10:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.11:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.12:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.13:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.14:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.20:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.30:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.40:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.49_01:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.50:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.51:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.52:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.53:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.54:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.55:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.56:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.57:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.60:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.61:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.62:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.63:*:*:*:*:*:*:*
- cpe:2.3:a:mark_stosberg:data\:\:formvalidator:4.65:*:*:*:*:*:*:*
- Range: <=4.66
- Range: <=4.66
- Range: <=4.66
Patches
Vulnerability mechanics
References
8- bugs.debian.org/cgi-bin/bugreport.cginvdExploitPatch
- lists.fedoraproject.org/pipermail/package-announce/2011-September/065416.htmlnvdExploitPatch
- www.openwall.com/lists/oss-security/2011/06/12/3nvdExploitPatch
- www.openwall.com/lists/oss-security/2011/06/13/13nvdExploitPatch
- www.securityfocus.com/bid/48167nvdExploit
- bugzilla.redhat.com/show_bug.cginvdExploitPatch
- rt.cpan.org/Public/Bug/Display.htmlnvdExploit
- www.openwall.com/lists/oss-security/2011/06/13/5nvd
News mentions
0No linked articles in our index yet.