/ 
Mojolicious-0.999921
⭐ Starred 2674
/ Test::Mojo::Server
Security Advisories (13)
CPANSA-Mojolicious-2022-03 (2022-12-10)

Mojo::DOM did not correctly parse <script> tags.

CPANSA-Mojolicious-2021-02 (2021-06-01)

Small sessions could be used as part of a brute-force attack to decode the session secret.

CVE-2021-47208 (2021-03-16)

A bug in format detection can potentially be exploited for a DoS attack.

CVE-2018-25100 (2018-02-13)

Mojo::UserAgent::CookieJar leaks old cookies because of the missing host_only flag on empty domain.

CPANSA-Mojolicious-2015-01 (2015-02-02)

Directory traversal on Windows

CVE-2010-4802 (2011-05-03)

Commands.pm in Mojolicious before 0.999928 does not properly perform CGI environment detection, which has unspecified impact and remote attack vectors.

CPANSA-Mojolicious-2018-03 (2018-05-19)

Mojo::UserAgent was not checking peer SSL certificates by default.

CPANSA-Mojolicious-2018-02 (2018-05-11)

GET requests with embedded backslashes can be used to access local files on Windows hosts

CPANSA-Mojolicious-2014-01 (2014-10-07)

Context sensitivity of method param could lead to parameter injection attacks.

CVE-2011-1841 (2011-03-10)

Mojolicious is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by link_to helper. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim's Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.

CVE-2011-1589 (2011-04-05)

Directory traversal vulnerability in Path.pm in Mojolicious before 1.16 allows remote attackers to read arbitrary files via a %2f..%2f (encoded slash dot dot slash) in a URI.

CVE-2010-4803 (2011-05-03)

Mojolicious before 0.999927 does not properly implement HMAC-MD5 checksums, which has unspecified impact and remote attack vectors.

CVE-2011-1841 (2011-05-03)

Cross-site scripting (XSS) vulnerability in the link_to helper in Mojolicious before 1.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

NAME

Test::Mojo::Server - Server Tests

SYNOPSIS

use Test::Mojo::Server;

my $server = Test::Mojo::Server->new;
$server->start_daemon_ok;
$server->stop_server_ok;

DESCRIPTION

Test::Mojo::Server is a collection of testing helpers specifically for developers of Mojo server bindings.

ATTRIBUTES

Test::Mojo::Server implements the following attributes.

command

my $command = $server->command;
$server     = $server->command("lighttpd -D -f $config");

executable

my $script = $server->executable;
$server    = $server->executable('mojo');

home

my $home = $server->home;
$server  = $server->home(Mojo::Home->new);

pid

my $pid = $server->pid;

port

my $port = $server->port;
$server  = $server->port(3000);

timeout

my $timeout = $server->timeout;
$server     = $server->timeout(5);

METHODS

Test::Mojo::Server inherits all methods from Mojo::Base and implements the following new ones.

new

my $server = Test::Mojo::Server->new;

find_executable_ok

my $path = $server->find_executable_ok;
my $path = $server->find_executable_ok('executable found');

generate_port_ok

my $port = $server->generate_port_ok;
my $port = $server->generate_port_ok('port test');

server_ok

$server->server_ok('server running');

start_daemon_ok

my $port = $server->start_daemon_ok('daemon test');

start_daemon_prefork_ok

my $port = $server->start_daemon_prefork_ok('prefork daemon test');

start_server_ok

my $port = $server->start_server_ok('server test');

start_server_untested_ok

my $port = $server->start_server_untested_ok('server test');

stop_server_ok

$server->stop_server_ok('server stopped');

SEE ALSO

Mojolicious, Mojolicious::Book, http://mojolicious.org.