Vulnerabilities

CVE-2025-40916

by Fred · 16/06/2025

Mojolicious::Plugin::CaptchaPNG version 1.05 for Perl uses a weak random number source for generating the captcha.

That version uses the built-in rand() function for generating the captcha text as well as image noise, which is insecure.

Assigner : cve-request@security.metacpan.org

More information : https://metacpan.org/pod/perlfunc#rand

Similar

Tags: Cybersecurity Alert