CVE-2011-2201

Name of the Vulnerable Software and Affected Versions Data::FormValidator versions 4.66 and earlier

Description The issue concerns the Data::FormValidator module for Perl. When the untaint all constraints option is enabled, it fails to properly preserve the taint attribute of data. This could potentially allow remote attackers to bypass the taint protection mechanism by manipulating form input.

Recommendations For versions 4.66 and earlier, consider disabling the untaint all constraints option as a temporary workaround until a patch is available. Restrict access to form input to minimize the risk of exploitation.