chansen/p5-http-tiny

chansen/p5-http-tiny

Releases162
Frequency4 weeks 10 hours
Last Release
Stars53
Tiny HTTP Client

CVE History

CVEAffectedPublishedCVSS v3CVSS v2
5.9 MEDIUM

GitLab::API::v4 through 0.26 does not verify TLS certificates when connecting to a GitLab server, enabling machine-in-the-middle attacks.

8.1 HIGH

HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates.