Security Advisory

CVE-2025-15618

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-31 10:04:34

Last updated 2026-03-31 18:18:47

Assigner CPANSec

State PUBLISHED

Description

Business::OnlinePayment::StoredTransaction versions through 0.01 for Perl uses an insecure secret key. Business::OnlinePayment::StoredTransaction generates a secret key by using a MD5 hash of a single call to the built-in rand function, which is unsuitable for cryptographic use. This key is intended for encrypting credit card transaction data.

← Browse all CVEs View on cve.org ↗