VYPR

Cgi Simple

by Andy Armstrong

Source repositories

CVEs (3)

  • CVE-2025-40927HigAug 29, 2025
    risk 0.47cvss 7.3epss 0.00

    CGI::Simple versions before 1.282 for Perl has a HTTP response splitting flaw This vulnerability is a confirmed HTTP response splitting flaw in CGI::Simple that allows HTTP response header injection, which can be used for reflected XSS or open redirect under certain…

  • CVE-2010-4410Dec 6, 2010
    risk 0.00cvss epss 0.02

    CRLF injection vulnerability in the header function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters…

  • CVE-2010-2761Dec 6, 2010
    risk 0.00cvss epss 0.03

    The multipart_init function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote attackers to inject arbitrary HTTP headers and conduct HTTP…