VYPR

Data::FormValidator

by Debian

CVEs (1)

  • CVE-2011-2201Sep 14, 2011
    risk 0.03cvss epss 0.06

    The Data::FormValidator module 4.66 and earlier for Perl, when untaint_all_constraints is enabled, does not properly preserve the taint attribute of data, which might allow remote attackers to bypass the taint protection mechanism via form input.