VYPR

mod_unique_id

by Apache

CVEs (1)

  • CVE-2026-5081CriMay 6, 2026
    risk 0.59cvss 9.1epss 0.00

    Apache::Session::Generate::ModUniqueId versions from 1.54 through 1.94 for Perl session ids are insecure. Apache::Session::Generate::ModUniqueId (added in version 1.54) uses the value of the UNIQUE_ID environment variable for the session id. The UNIQUE_ID variable is set by the…