Filtered by vendor Hayajo
Subscriptions
Filtered by product Mojolicious::sessions::storable
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-9692 | 1 Hayajo | 1 Mojolicious::sessions::storable | 2026-06-20 | 5.3 Medium |
| Mojolicious::Sessions::Storable versions through 0.05 for Perl generate session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the built-in rand function, the epoch time, the heap address of an anonymous hash, and the PID. These are predictable or low-entropy sources that are unsuitable for security purposes. | ||||
Page 1 of 1.