cbcvebase.

Debian Libapache2-Mod-Perl2 vulnerabilities

3 known vulnerabilities affecting debian/libapache2-mod-perl2.

Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1LOW2

Vulnerabilities

Page 1 of 1
CVE-2011-2767P2CRITICALCVSS 9.8fixed in libapache2-mod-perl2 2.0.10-3 (bookworm)2011
CVE-2011-2767 [CRITICAL] CVE-2011-2767: libapache2-mod-perl2 - mod_perl 2.0 through 2.0.10 allows attackers to execute arbitrary Perl code by p... mod_perl 2.0 through 2.0.10 allows attackers to execute arbitrary Perl code by placing it in a user-owned .htaccess file, because (contrary to the documentation) there is no configuration option that permits Perl code for the administrator's control of HTTP request processing without also permitting unprivileged users to run Perl code in the context o
debian
CVE-2009-0796P4LOWCVSS 2.6PoCfixed in libapache2-mod-perl2 2.0.4-6 (bookworm)2009
CVE-2009-0796 [LOW] CVE-2009-0796: libapache2-mod-perl2 - Cross-site scripting (XSS) vulnerability in Status.pm in Apache::Status and Apac... Cross-site scripting (XSS) vulnerability in Status.pm in Apache::Status and Apache2::Status in mod_perl1 and mod_perl2 for the Apache HTTP Server, when /perl-status is accessible, allows remote attackers to inject arbitrary web script or HTML via the URI. Scope: local bookworm: resolved (fixed in 2.0.4-6) bullseye: resolved (fixed in 2.0.4-6) forky: resolv
debian
CVE-2007-1349P4LOWCVSS 5.0fixed in libapache2-mod-perl2 2.0.2-5 (bookworm)2007
CVE-2007-1349 [MEDIUM] CVE-2007-1349: libapache2-mod-perl2 - PerlRun.pm in Apache mod_perl before 1.30, and RegistryCooker.pm in mod_perl 2.x... PerlRun.pm in Apache mod_perl before 1.30, and RegistryCooker.pm in mod_perl 2.x, does not properly escape PATH_INFO before use in a regular expression, which allows remote attackers to cause a denial of service (resource consumption) via a crafted URI. Scope: local bookworm: resolved (fixed in 2.0.2-5) bullseye: resolved (fixed in 2.0.2-5) forky: resol
debian
Debian Libapache2-Mod-Perl2 vulnerabilities | cvebase