HTML-StripScripts 1.06 Latest
Security Advisories
CVE-2023-24038
The HTML-StripScripts module through 1.06 for Perl allows _hss_attval_style ReDoS because of catastrophic backtracking for HTML content with certain style attributes.
- https://github.com/clintongormley/perl-html-stripscripts/issues/3
- https://lists.debian.org/debian-lts-announce/2023/01/msg00036.html
- https://www.debian.org/security/2023/dsa-5339
Severity: high
Reported: 2023-01-21
Kwalitee Issues
No Core Issues.
- meta_yml_declares_perl_version
-
If you are using Build.PL define the {requires}{perl} = VERSION field. If you are using MakeMaker (Makefile.PL) you should upgrade ExtUtils::MakeMaker to 6.48 and use MIN_PERL_VERSION parameter. Perl::MinimumVersion can help you determine which version of Perl your module needs.
- meta_yml_has_provides
-
Add all modules contained in this distribution to the META.yml field 'provides'. Module::Build or Dist::Zilla::Plugin::MetaProvides do this automatically for you.
- has_separate_license_file
-
This is not a critical issue. Currently mainly informative for the CPANTS authors. It might be removed later.
Modules
Name | Abstract | Version | View |
---|---|---|---|
HTML::StripScripts | Strip scripting constructs out of HTML | 1.06 | metacpan |