CVE-2011-2201

EPSS 12.4%

Published: 9/14/2011Modified: 4/28/2026

Description

The Data::FormValidator module 4.66 and earlier for Perl, when untaint_all_constraints is enabled, does not properly preserve the taint attribute of data, which might allow remote attackers to bypass the taint protection mechanism via form input.

Affected packages (1)

Debian/libdata-formvalidator-perlfrom 0, < 4.66-3

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-2201