|more useful options
Re^8: Beginner Recommendationsby hv (Prior)
|on Jan 24, 2023 at 17:01 UTC
I do host sites which use my perl scripts, yes
If you are using a perl earlier than 5.18, it is highly likely that your CGI scripts are vulnerable to algorithmic complexity attacks via hash keys, first addressed in the hash overhaul in 5.18.
(I was then, and am still now, a member of the Perl security team. At the time I was working for a company with responsibility for the safekeeping of 100s of millions of credit card numbers and associated personal data, and the main bug report leading to that hash overhaul was the single scariest issue I dealt with in my career.)