CVE-2026-13082
UNKNOWN
NVD
CVSS Score
0
Severity
UNKNOWN
Published
Jul 17, 2026
Vendor
unknown
Description
GD::SecurityImage versions through 1.75 for Perl use rand to generate secrets. The random method creates the challenge text used for the CAPTCHA by sampling characters from an array using Perl's built-in rand function, and generates a (by default) six-character string. The built-in rand function is unsuitable for security applications because it is predictable and reversible.