/ 
CGI-Session3
River stage four • 286 direct dependents • 1214 total dependents
/ CGI::Session::MySQL
Security Advisories (6)
CVE-2012-5526 (2012-11-21)

CGI.pm module before 3.63 for Perl does not properly escape newlines in (1) Set-Cookie or (2) P3P headers, which might allow remote attackers to inject arbitrary headers into responses from applications that use CGI.pm.

CVE-2011-2766 (2011-11-08)

Usage of deprecated FCGI.pm API.

CPANSA-CGI-2010-02 (2010-11-08)

Non-random MIME boundary.

CPANSA-CGI-2010-01 (2010-02-05)

Newlines in headers.

CVE-2010-4411 (2010-12-06)

Unspecified vulnerability in CGI.pm 3.50 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unknown vectors. NOTE: this issue exists because of an incomplete fix for CVE-2010-2761.

CVE-2010-2761 (2010-12-06)

The multipart_init function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via crafted input that contains this value, a different vulnerability than CVE-2010-3172.

NAME

CGI::Session::MySQL - MySQL driver for CGI::Session

SYNOPSIS

use CGI::Session qw/-api3/;
$session = new CGI::Session("driver:MySQL", undef, {Handle=>$dbh});

For more examples, consult CGI::Session manual

DESCRIPTION

CGI::Session::MySQL is a CGI::Session driver to store session data in MySQL table. To write your own drivers for CGI::Session refere CGI::Session manual.

STORAGE

To store session data in MySQL database, you first need to create a suitable table for it with the following command:

CREATE TABLE sessions (
    id CHAR(32) NOT NULL,
    a_session TEXT NOT NULL
);

You can also add any number of additional columns to the table, but the above "id" and "a_session" are required.

If you want to store the session data in other table than "sessions", before creating the session object you need to set the special variable $CGI::Session::MySQL::TABLE_NAME to the name of the table:

use CGI::Session qw/-api3/;

$CGI::Session::MySQL::TABLE_NAME = 'my_sessions';
$session = new CGI::Session("driver:MySQL", undef, {Handle=>$dbh});

COPYRIGHT

Copyright (C) 2001, 2002 Sherzod Ruzmetov. All rights reserved.

This library is free software and can be modified and distributed under the same terms as Perl itself.

AUTHOR

Your name=pod

NAME

CGI::Session::BluePrint - Default CGI::Session driver BluePrint

SYNOPSIS

use CGI::Session::BluePrint
$session = new CGI::Session("driver:BluePrint", undef, {...});

For more examples, consult CGI::Session manual

DESCRIPTION

CGI::Session::BluePrint is a CGI::Session driver. To write your own drivers for CGI::Session refere CGI::Session manual.

COPYRIGHT

Copyright (C) 2002 Your Name. All rights reserved.

This library is free software and can be modified and distributed under the same terms as Perl itself.

AUTHOR

Sherzod Ruzmetov <sherzodr@cpan.org>. All the bug reports should be sent to the author to sherzodr@cpan.org>

SEE ALSO

CGI::Session CGI::Session::MySQL CGI::Session::DB_File CGI::Session::BerkelyDB