HTTP-Body 1.08 Deleted
Security Advisories
CVE-2013-4407
HTTP::Body::Multipart in the HTTP-Body 1.08, 1.22, and earlier module for Perl uses the part of the uploaded file's name after the first "." character as the suffix of a temporary file, which makes it easier for remote attackers to conduct attacks by leveraging subsequent behavior that may assume the suffix is well-formed.
- https://www.openwall.com/lists/oss-security/2024/04/07/1
- https://security-tracker.debian.org/tracker/CVE-2013-4407
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721634
Fixed version: >=1.23
Severity: moderate
Reported: 2013-09-02
Kwalitee Issues
No Core Issues.
- meta_yml_declares_perl_version
-
If you are using Build.PL define the {requires}{perl} = VERSION field. If you are using MakeMaker (Makefile.PL) you should upgrade ExtUtils::MakeMaker to 6.48 and use MIN_PERL_VERSION parameter. Perl::MinimumVersion can help you determine which version of Perl your module needs.
- has_meta_json
-
Add a META.json to the distribution. Your buildtool should be able to autogenerate it.
- proper_libs
-
Move your *.pm files in a directory named 'lib'. The directory structure should look like 'lib/Your/Module.pm' for a module named 'Your::Module'. If you need to provide additional files, e.g. for testing, that should not be considered for Kwalitee, then you should look at the 'provides' map in META.yml to limit the files scanned; or use the 'no_index' map to exclude parts of the distribution.
Error: blib/lib/HTTP/Body.pm, blib/lib/HTTP/Body/MultiPart.pm, blib/lib/HTTP/Body/OctetStream.pm, blib/lib/HTTP/Body/UrlEncoded.pm, blib/lib/HTTP/Body/XForms.pm, blib/lib/HTTP/Body/XFormsMultipart.pm
- use_warnings
-
Add 'use warnings' (or its equivalents) to all modules, or convince us that your favorite module is well-known enough and people can easily see the modules warn when something bad happens.
Error: HTTP::Body, HTTP::Body, HTTP::Body::MultiPart, HTTP::Body::MultiPart, HTTP::Body::OctetStream, HTTP::Body::OctetStream, HTTP::Body::UrlEncoded, HTTP::Body::UrlEncoded, HTTP::Body::XForms, HTTP::Body::XForms, HTTP::Body::XFormsMultipart, HTTP::Body::XFormsMultipart
- meta_yml_has_provides
-
Add all modules contained in this distribution to the META.yml field 'provides'. Module::Build or Dist::Zilla::Plugin::MetaProvides do this automatically for you.
- meta_yml_has_repository_resource
-
Add a 'repository' resource to the META.yml via 'meta_add' accessor (for Module::Build) or META_ADD parameter (for ExtUtils::MakeMaker).
Modules
Name | Abstract | Version | View |
---|---|---|---|
HTTP::Body | HTTP Body Parser | 1.08 | metacpan |
HTTP::Body::MultiPart | HTTP Body Multipart Parser | 1.08 | metacpan |
HTTP::Body::OctetStream | HTTP Body OctetStream Parser | 1.08 | metacpan |
HTTP::Body::UrlEncoded | HTTP Body UrlEncoded Parser | 1.08 | metacpan |
HTTP::Body::XForms | HTTP Body XForms Parser | 1.08 | metacpan |
HTTP::Body::XFormsMultipart | HTTP Body XForms multipart/related submission Parser | 1.08 | metacpan |