VulnerableCode Package Details - pkg:deb/debian/libcgi-simple-perl@1.111-2

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-1sgy-ce9z-aaac	Unspecified vulnerability in CGI.pm 3.50 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unknown vectors. NOTE: this issue exists because of an incomplete fix for CVE-2010-2761.	CVE-2010-4411
VCID-af7q-sujb-aaap	The multipart_init function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via crafted input that contains this value, a different vulnerability than CVE-2010-3172.	CVE-2010-2761
VCID-szwa-ua87-aaaq	CRLF injection vulnerability in the header function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline characters, a different vulnerability than CVE-2010-2761 and CVE-2010-3172.	CVE-2010-4410

Vulnerability

Summary

Aliases

VCID-1sgy-ce9z-aaac

Unspecified vulnerability in CGI.pm 3.50 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unknown vectors. NOTE: this issue exists because of an incomplete fix for CVE-2010-2761.

CVE-2010-4411

VCID-af7q-sujb-aaap

The multipart_init function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via crafted input that contains this value, a different vulnerability than CVE-2010-3172.

CVE-2010-2761

VCID-szwa-ua87-aaaq

CRLF injection vulnerability in the header function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline characters, a different vulnerability than CVE-2010-2761 and CVE-2010-3172.

CVE-2010-4410

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-21T14:40:25.897585+00:00	Debian Oval Importer	Fixing	VCID-1sgy-ce9z-aaac	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T12:56:43.964764+00:00	Debian Oval Importer	Fixing	VCID-af7q-sujb-aaap	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T12:51:23.878710+00:00	Debian Oval Importer	Fixing	VCID-szwa-ua87-aaaq	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T01:02:55.424894+00:00	Debian Oval Importer	Fixing	VCID-1sgy-ce9z-aaac	None	36.1.3
2025-06-20T22:26:48.297350+00:00	Debian Oval Importer	Fixing	VCID-szwa-ua87-aaaq	None	36.1.3
2025-06-20T21:27:40.058881+00:00	Debian Oval Importer	Fixing	VCID-af7q-sujb-aaap	None	36.1.3
2025-06-08T13:16:17.143393+00:00	Debian Oval Importer	Fixing	VCID-1sgy-ce9z-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T07:33:37.867501+00:00	Debian Oval Importer	Fixing	VCID-1sgy-ce9z-aaac	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T05:51:43.804769+00:00	Debian Oval Importer	Fixing	VCID-af7q-sujb-aaap	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T05:46:26.551232+00:00	Debian Oval Importer	Fixing	VCID-szwa-ua87-aaaq	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-07T18:25:26.248591+00:00	Debian Oval Importer	Fixing	VCID-1sgy-ce9z-aaac	None	36.1.0
2025-06-07T15:51:03.063770+00:00	Debian Oval Importer	Fixing	VCID-szwa-ua87-aaaq	None	36.1.0
2025-06-07T14:50:19.219870+00:00	Debian Oval Importer	Fixing	VCID-af7q-sujb-aaap	None	36.1.0
2025-04-12T20:24:07.842740+00:00	Debian Oval Importer	Fixing	VCID-szwa-ua87-aaaq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T19:20:04.201183+00:00	Debian Oval Importer	Fixing	VCID-af7q-sujb-aaap	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T19:04:14.487431+00:00	Debian Oval Importer	Fixing	VCID-1sgy-ce9z-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-08T06:06:21.144941+00:00	Debian Oval Importer	Fixing	VCID-1sgy-ce9z-aaac	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T04:23:33.346909+00:00	Debian Oval Importer	Fixing	VCID-af7q-sujb-aaap	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T04:18:12.413090+00:00	Debian Oval Importer	Fixing	VCID-szwa-ua87-aaaq	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-07T17:03:02.978266+00:00	Debian Oval Importer	Fixing	VCID-1sgy-ce9z-aaac	None	36.0.0
2025-04-07T14:21:54.409357+00:00	Debian Oval Importer	Fixing	VCID-szwa-ua87-aaaq	None	36.0.0
2025-04-07T13:22:19.440338+00:00	Debian Oval Importer	Fixing	VCID-af7q-sujb-aaap	None	36.0.0
2024-11-27T23:42:32.032676+00:00	Debian Oval Importer	Fixing	VCID-1sgy-ce9z-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	35.0.0
2024-11-27T23:38:37.904893+00:00	Debian Oval Importer	Fixing	VCID-szwa-ua87-aaaq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	35.0.0
2024-11-27T19:28:51.200744+00:00	Debian Oval Importer	Fixing	VCID-af7q-sujb-aaap	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	35.0.0
2024-10-13T14:49:10.350025+00:00	Debian Oval Importer	Fixing	VCID-1sgy-ce9z-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	34.0.2
2024-10-13T14:46:01.315196+00:00	Debian Oval Importer	Fixing	VCID-szwa-ua87-aaaq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	34.0.2
2024-10-13T12:01:11.631544+00:00	Debian Oval Importer	Fixing	VCID-af7q-sujb-aaap	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	34.0.2
2024-09-21T00:18:38.899595+00:00	Debian Oval Importer	Fixing	VCID-1sgy-ce9z-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	34.0.1
2024-09-21T00:17:15.961922+00:00	Debian Oval Importer	Fixing	VCID-szwa-ua87-aaaq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	34.0.1
2024-09-20T23:09:19.455459+00:00	Debian Oval Importer	Fixing	VCID-af7q-sujb-aaap	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	34.0.1