CVE-2025-40915 | GRYPHON Mojolicious::Plugin::CSRF 1.03 on Perl CSRF Token rand weak prng

Inserito da Angelo Barbosa | Giu 11, 2025 | CVE

A vulnerability classified as problematic has been found in GRYPHON Mojolicious::Plugin::CSRF 1.03 on Perl. This affects the function rand of the component CSRF Token Handler. The manipulation leads to cryptographically weak prng.

This vulnerability is uniquely identified as CVE-2025-40915. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-40915 | GRYPHON Mojolicious::Plugin::CSRF 1.03 on Perl CSRF Token rand weak prng

Post correlati

CVE-2023-46304 | vTiger CRM 7.5.0 Module.php code injection

CVE-2024-9631 | GitLab Community Edition/Enterprise Edition up to 17.2.8/17.3.4/17.4.1 algorithmic complexity (Issue 480867)

CVE-2024-36587 | DNSCrypt-proxy up to 2.1.5 permission

CVE-2024-7460 | OSWAPP Warehouse Inventory System 1.0/2.0 /change_password.php cross-site request forgery