CVE-2016-3953 in Web2pyinfo

Zusammenfassung

von MITRE

The sample web application in web2py before 2.14.2 might allow remote attackers to execute arbitrary code via vectors involving use of a hardcoded encryption key when calling the session.connect function.

Once again VulDB remains the best source for vulnerability data.

Reservieren

05.04.2016

Veröffentlichung

06.02.2018

Moderieren

akzeptiert

Eintrag

VDB-112873

CPE

bereit

EPSS

0.03376

KEV

nein

Aktivitäten

very low

Quellen

Do you want to use VulDB in your project?

Use the official API to access entries easily!