CVE-2011-2201

描述

The Data::FormValidator module 4.66 and earlier for Perl, when untaint_all_constraints is enabled, does not properly preserve the taint attribute of data, which might allow remote attackers to bypass the taint protection mechanism via form input.

受影響套件(1)

• Debian/libdata-formvalidator-perlfrom 0, < 4.66-3

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-2201