Vulnerabilities > Dancer

DATE CVE VULNERABILITY TITLE RISK
2019-07-17 CVE-2019-1010084 Incorrect Authorization vulnerability in Dancer::Plugin::Simplecrud Project Dancer::Plugin::Simplecrud
Dancer::Plugin::SimpleCRUD 1.14 and earlier is affected by: Incorrect Access Control.
network
low complexity
dancer CWE-863
4.0
2014-05-30 CVE-2012-5572 Improper Input Validation vulnerability in Dancer
CRLF injection vulnerability in the cookie method (lib/Dancer/Cookie.pm) in Dancer before 1.3114 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a cookie name, a different vulnerability than CVE-2012-5526.
network
low complexity
dancer CWE-20
5.0