Security Advisories (1)
CVE-2026-13082 (2026-07-17)

GD::SecurityImage versions through 1.75 for Perl use rand to generate secrets. The random method creates the challenge text used for the CAPTCHA by sampling characters from an array using Perl's built-in rand function, and generates a (by default) six-character string. The built-in rand function is unsuitable for security applications because it is predictable and reversible.

NAME

GD::SecurityImage::Magick

VERSION

version 1.75

SYNOPSIS

See GD::SecurityImage.

DESCRIPTION

Includes GD method emulations for Image::Magick.

Used internally by GD::SecurityImage. Nothing public here.

NAME

GD::SecurityImage::Magick - Image::Magick backend for GD::SecurityImage.

METHODS

arc

ellipse

filledRectangle

init

insert_text

line

out

rectangle

setPixel

setThickness

gdbox_empty

SEE ALSO

GD::SecurityImage.

AUTHOR

Burak Gursoy <burak@cpan.org>

COPYRIGHT AND LICENSE

This software is copyright (c) 2004 by Burak Gursoy.

This is free software; you can redistribute it and/or modify it under the same terms as the Perl 5 programming language system itself.