RCE in Hmbrand Dbi
CVE-2026-14380
DBI versions before 1.650 for Perl are vulnerable to code injection via caller-influenced Profile. When a string is assigned to a DBI handle's Profile attribute, DBI splits it into path, package and arguments, and interpolates the package…
Affected products
- Hmbrand Dbi — versions 0
Weakness classification (CWE)
References
- 9b29abf9-4ab0-4765-b253-1875cd9b441e (patch)
- 9b29abf9-4ab0-4765-b253-1875cd9b441e (vendor-advisory)
- 9b29abf9-4ab0-4765-b253-1875cd9b441e (release-notes)
- af854a3a-2127-422b-91ae-364da2661108