Description
HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates.
Remediation
References
Related Vulnerabilities
WordPress Plugin Product Catalog Multiple Vulnerabilities (4.2.11)
Joomla CVE-2006-4470 Vulnerability (CVE-2006-4470)
WordPress Plugin Better Click To Tweet Unspecified Vulnerability (5.1)
WordPress Plugin SoundCloud Is Gold 'width' Parameter Cross-Site Scripting (2.1)
Drupal Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2020-36193)