CVE-2003-0615
perl - cross-site scripting
EPSS 7.2%
Description
Cross-site scripting (XSS) vulnerability in start_form() of CGI.pm allows remote attackers to insert web script via a URL that is fed into the form's action parameter.
How to fix CVE-2003-0615
To remediate CVE-2003-0615, upgrade the affected package to a fixed version below.
- Debian/perl—upgrade to 5.8.0-19 or later
- Debian/perl—upgrade to 5.6.1-8.3 or later
Is CVE-2003-0615 being exploited?
Moderate — EPSS is 7.2%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 5.8.0-19
- from 0, < 5.6.1-8.3