CVE-2016-3952 in Web2pyinformación

Resumen

por MITRE

web2py before 2.14.1, when using the standalone version, allows remote attackers to obtain environment variable values via a direct request to examples/template_examples/beautify. NOTE: this issue can be leveraged by remote attackers to gain administrative access.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservar

2016-04-05

Divulgación

2018-02-06

Moderación

aceptado

Artículo

VDB-112872

CPE

listo

EPSS

0.01079

KEV

no

Actividades

muy bajo

Fuentes

Might our Artificial Intelligence support you?

Check our Alexa App!