rschupp/Module-ScanDeps

Releases61

Frequency1 month 2 weeks

Last Release over 1 year ago

Stars9

(perl) Recursively scan Perl code for dependencies https://metacpan.org/pod/Module::ScanDeps

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-10224 ↗	Nov 19, 2024Tuesday, 19 November 2024, 18:15	5.3 MEDIUM	—
Qualys discovered that if unsanitized input was used with the library Modules::ScanDeps, before version 1.36 a local attacker could possibly execute arbitrary shell commands by open()ing a "pesky pipe" (such as passing "commands\|" as a filename) or by passing arbitrary strings to eval().