Vulnerability Details : CVE-2020-36827
The XAO::Web module before 1.84 for Perl mishandles < and > characters in JSON output during use of json-embed in Web::Action.
Products affected by CVE-2020-36827
Please log in to view affected product information.
Exploit prediction scoring system (EPSS) score for CVE-2020-36827
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 9 %
Percentile, the proportion of vulnerabilities that are scored at or less
References for CVE-2020-36827
-
https://metacpan.org/dist/XAO-Web/changes
CHANGES - metacpan.org
-
https://github.com/amaltsev/XAO-Web/commit/20dd1d3bc5b811503f5722a16037b60197fe7ef4
1.84 Security fix for json-embed in Web::Action · amaltsev/XAO-Web@20dd1d3 · GitHub
Jump to