Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web2py web2py vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2016-10321
web2py prior to 2.14.6 does not properly check if a host is denied before verifying passwords, allowing a remote malicious user to perform brute-force attacks.
Web2py Web2py
668
VMScore
CVE-2016-3953
The sample web application in web2py prior to 2.14.2 might allow remote malicious users to execute arbitrary code via vectors involving use of a hardcoded encryption key when calling the session.connect function.
Web2py Web2py
516
VMScore
CVE-2015-6961
Open redirect vulnerability in gluon/tools.py in Web2py 2.9.11 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the _next parameter to user/logout.
Web2py Web2py 2.9.11
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2