Path Traversal in Hmbrand Dbd::file

CVE-2026-15392

DBD::File versions before 1.651 for Perl do not ensure the table file is not a symlink to an untrusted location. The complete_table_name method builds the absolute table file path without checking whether the file is a symbolic link. A li…

Vulnerability class: Path Traversal (Directory Traversal)

Affected products

Weakness classification (CWE)

References