VDB

GCVE-110-MAGEIA-2014-486

GCVE-110-MAGEIA-2014-486
Advisory Published
Vulnetix · Advisory published November 26, 2014
Plack::App::File would previously strip trailing slashes off provided paths. This in combination with the common pattern of serving files with Plack::Middleware::Static could allow an attacker to bypass a whitelist of generated files (CVE-2014-5269).

Affected Products

VendorProductVersionsPlatforms
Mageiaperl-Plack0 (affected), 1.2.900-2.1.mga4 (unaffected)
Mageiaperl-Plack0 (affected), 1.1.400-2.1.mga3 (unaffected)

Browse GCVE Records

73,196 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›