libwww-perl-5b13

Security Advisories (4)

CPANSA-libwww-perl-2017-01 (2017-11-06)

LWP::Protocol::file can open existent file from file:// scheme. However, current version of LWP uses open FILEHANDLE,EXPR and it has ability to execute arbitrary command

https://github.com/libwww-perl/libwww-perl/pull/270

CVE-2011-0633 (2011-01-20)

The Net::HTTPS module in libwww-perl (LWP) before 6.00, as used in WWW::Mechanize, LWP::UserAgent, and other products, when running in environments that do not set the If-SSL-Cert-Subject header, does not enable full validation of SSL certificates by default, which allows remote attackers to spoof servers via man-in-the-middle (MITM) attacks involving hostnames that are not properly validated.

CVE-2010-2253 (2010-07-06)

lwp-download in libwww-perl before 5.835 does not reject downloads to filenames that begin with a . (dot) character, which allows remote servers to create or overwrite files via (1) a 3xx redirect to a URL with a crafted filename or (2) a Content-Disposition header that suggests a crafted filename, and possibly execute arbitrary code as a consequence of writing to a dotfile in a home directory.

CPANSA-libwww-perl-2001-01 (2001-03-14)

If LWP::UserAgent::env_proxy is called in a CGI environment, the case-insensitivity when looking for "http_proxy" permits "HTTP_PROXY" to be found, but this can be trivially set by the web client using the "Proxy:" header.

Documentation

lwp-mirror

Simple mirror utility for WWW

lwp-rget

Retrieve WWW documents recursively

lwpcook

libwww-perl cookbook

Modules

File::CounterFile

Persistent counter class

File::Listing

parse directory listing

Font::AFM

Interface to Adobe Font Metrics files

HTML::AsSubs

functions that construct a HTML syntax tree

HTML::Element

Class for objects that represent HTML elements

HTML::Entities

Expand HTML entites in a string

HTML::FormatPS

Format HTML as postscript

HTML::FormatText

Format HTML as text

HTML::Formatter

Base class for HTML formatters

HTML::Parse

Parse HTML text

HTTP::Headers

Class encapsulating HTTP Message headers

HTTP::Message

Class encapsulating HTTP messages

HTTP::Negotiate

choose a variant of a document to serve (HTTP content negotiation)

HTTP::Request

Class encapsulating HTTP Requests

HTTP::Response

Class encapsulating HTTP Responses

HTTP::Status

HTTP Status code processing

LWP

Library for WWW access in Perl

LWP::Debug

debug routines for the libwww-perl library

LWP::IO

Low level I/O capability

LWP::MediaTypes

guess media type for a file or a URL.

LWP::MemberMixin

Member access mixin class

LWP::Protocol

Virtual base class for LWP protocols

LWP::RobotUA

A class for Web Robots

LWP::Socket

TCP/IP socket interface

LWP::IO

Tk I/O routines for the LWP library

LWP::UserAgent

A WWW UserAgent class

MIME::Base64

Encode string using base64 encoding

MIME::QuotedPrint

Encode string using quoted-printable encoding

URI::Escape

Escape unsafe characters

URI::URL

Uniform Resource Locators (absolute and relative)

WWW::RobotRules

Parse robots.txt files

Provides

File::Listing::dosftp

in lib/File/Listing.pm

File::Listing::netware

in lib/File/Listing.pm

File::Listing::unix

in lib/File/Listing.pm

File::Listing::vms

in lib/File/Listing.pm

Font::Metrics::Courier

in lib/Font/Metrics/Courier.pm

Font::Metrics::CourierBold

in lib/Font/Metrics/CourierBold.pm

Font::Metrics::CourierBoldOblique

in lib/Font/Metrics/CourierBoldOblique.pm

Font::Metrics::CourierOblique

in lib/Font/Metrics/CourierOblique.pm

Font::Metrics::Helvetica

in lib/Font/Metrics/Helvetica.pm

Font::Metrics::HelveticaBold

in lib/Font/Metrics/HelveticaBold.pm

Font::Metrics::HelveticaBoldOblique

in lib/Font/Metrics/HelveticaBoldOblique.pm

Font::Metrics::HelveticaOblique

in lib/Font/Metrics/HelveticaOblique.pm

Font::Metrics::TimesBold

in lib/Font/Metrics/TimesBold.pm

Font::Metrics::TimesBoldItalic

in lib/Font/Metrics/TimesBoldItalic.pm

Font::Metrics::TimesItalic

in lib/Font/Metrics/TimesItalic.pm

Font::Metrics::TimesRoman

in lib/Font/Metrics/TimesRoman.pm

HTTP::Date

in lib/HTTP/Date.pm

LWP::Protocol::file

in lib/LWP/Protocol/file.pm

LWP::Protocol::ftp

in lib/LWP/Protocol/ftp.pm

LWP::Protocol::gopher

in lib/LWP/Protocol/gopher.pm

LWP::Protocol::http

in lib/LWP/Protocol/http.pm

LWP::Protocol::mailto

in lib/LWP/Protocol/mailto.pm

LWP::Protocol::nntp

in lib/LWP/Protocol/nntp.pm

LWP::Prototocol::nntp

in lib/LWP/Protocol/nntp.pm

LWP::Prototocol::nntp::Socket

in lib/LWP/Protocol/nntp.pm

LWP::Simple

in lib/LWP/Simple.pm

URI::URL::_generic

in lib/URI/URL/_generic.pm

URI::URL::_login

in lib/URI/URL/_login.pm

URI::URL::file

in lib/URI/URL/file.pm

URI::URL::finger

in lib/URI/URL/finger.pm

URI::URL::ftp

in lib/URI/URL/ftp.pm

URI::URL::gopher

in lib/URI/URL/gopher.pm

URI::URL::http

in lib/URI/URL/http.pm

URI::URL::https

in lib/URI/URL/https.pm

URI::URL::mailto

in lib/URI/URL/mailto.pm

URI::URL::news

in lib/URI/URL/news.pm

URI::URL::nntp

in lib/URI/URL/nntp.pm

URI::URL::prospero

in lib/URI/URL/prospero.pm

URI::URL::rlogin

in lib/URI/URL/rlogin.pm

URI::URL::telnet

in lib/URI/URL/telnet.pm

URI::URL::tn3270

in lib/URI/URL/tn3270.pm

URI::URL::wais

in lib/URI/URL/wais.pm

URI::URL::webster

in lib/URI/URL/webster.pm

URI::URL::whois

in lib/URI/URL/whois.pm

Other files

To install LWP, copy and paste the appropriate command in to your terminal.

cpanm

cpanm LWP

CPAN shell

perl -MCPAN -e shell
install LWP

For more information on module installation, please visit the detailed CPAN module installation guide.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)

Documentation

Modules

Provides

Other files

Module Install Instructions