HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| perl | perl | * |
| http::tiny_project | http::tiny | * |