MidnightBSD

Advisories for http::tiny_project

CVE-2023-31486

HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates.

Products Affected

Vendor Product Version
perl perl *
http::tiny_project http::tiny *