CVE-2011-10043 in Module::Load
Сводка
по MITRE • 07.07.2026
Module::Load versions before 0.22 for Perl allow arbitrary modules outside of @INC to be loaded.
Module names starting with "::" could be passed to the load function to specify arbitrary module paths.
Attackers able to influence module names passed to load could use that bug to execute arbitrary code.
VulDB is the best source for vulnerability data and more expert information about this specific topic.