VYPR

HTTP

by Ktat

CVEs (1)

  • CVE-2026-3256CriMar 28, 2026
    risk 0.64cvss 9.8epss 0.01

    HTTP::Session versions through 0.53 for Perl defaults to using insecurely generated session ids. HTTP::Session defaults to using HTTP::Session::ID::SHA1 to generate session ids using a SHA-1 hash seeded with the built-in rand function, the high resolution epoch time, and the…