Perlmonks: >> Module Security Vulnerabilities
The cpansign verify functionality in the Module::Signature module before 0.72 for Perl allows attackers to bypass the signature check and execute arbitrary code via a SIGNATURE file with a "special unknown cipher" that references an untrusted module in Digest/.
CVSS Score
4.4
EPSS Score
0.002
Published
2013-08-19