QwikSec

Security Database

CVE

CWE

Training

CVE-2025-27552

Published: Mar 26, 2025

Modified: Sep 5, 2025

PUBLISHED

Description

DBIx::Class::EncodedColumn use the rand() function, which is not cryptographically secure to salt password hashes. This vulnerability is associated with program files Crypt/Eksblowfish/Bcrypt.pm. This issue affects DBIx::Class::EncodedColumn until 0.00032.

Vendor	Product	Versions
WREIS	DBIx::Class::EncodedColumn	affected `0 - < 0.00032`

Weaknesses (CWE)

References

https://security.metacpan.org/docs/guides/random-data-for-security.html

related

https://metacpan.org/release/WREIS/DBIx-Class-EncodedColumn-0.00032/changes

release-notes

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.