THREATOPS
THREAT OPSThreat News › CVE-2026-15747: Mojolicious versions from 4.59 before 9.48 for Perl expose a stable representation of the session CSRF token to a BREACH compression oracle

CVE-2026-15747: Mojolicious versions from 4.59 before 9.48 for Perl expose a stable representation of the session CSRF token to a BREACH compression oracle

medoss_secPublished 2026-07-14

<p>Posted by Stig Palmquist on Jul 14</p>========================================================================<br /> CVE-2026-15747 CPAN Security Group<br /> ========================================================================<br /> <br /> CVE ID: CVE-2026-15747<br /> Distribution: Mojolicious<br /> Versions: from 4.59 before 9.48<br

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://seclists.org/oss-sec/2026/q3/146