CVEs-PoC/2018/CVE-2018-18313.md

CVE-2018-18313

Description

Perl before 5.26.3 has a buffer over-read via a crafted regular expression that triggers disclosure of sensitive information from process memory.

POC

Reference

• https://hackerone.com/reports/510888
• https://rt.perl.org/Ticket/Display.html?id=133192
• https://www.oracle.com/security-alerts/cpujul2020.html

Github

• https://github.com/ARPSyndicate/cvemon
• https://github.com/RClueX/Hackerone-Reports
• https://github.com/imhunterand/hackerone-publicy-disclosed