Published:2011/05/26  Last Updated:2011/05/26

Information from Walrus, Digit

Vulnerability ID:JVN#46984044
Title:WalRack upload file handilng vulnerability

This is a statement from the vendor itself with no modification by JPCERT/CC.

WalRack is sample code for the perl modules "CGI::Lite" and "".
Since CGI modules and Encode modules are readily available, learning how to use these modules is not important. Therefore, it is recommended tostop using WalRack

For users that wish to continue using WalRack, please upgrade to WalRack 1.1.9 or WalRack 2.0.7 and later which contain fixes for this vulnerability. The updates can be found at the below URLs

(Japanese Only)

(Japanese Only)