perl-catalyst/Catalyst-Plugin-Authentication

Releases28

Frequency7 months 2 weeks

Last Release 15 days ago

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2026-5091 ↗	May 21, 2026Thursday, 21 May 2026, 22:16	5.1 MEDIUM	—
Catalyst::Plugin::Authentication versions through 0.10024 for Perl is susceptible to timing attacks. These versions use Perl's built-in eq comparison. Discrepencies in timing could be used to guess the underlying hash or password.