CVE-2016-3952 in Web2pyजानकारी

सारांश

द्वारा MITRE

web2py before 2.14.1, when using the standalone version, allows remote attackers to obtain environment variable values via a direct request to examples/template_examples/beautify. NOTE: this issue can be leveraged by remote attackers to gain administrative access.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

आरक्षित करना

05/04/2016

प्रकटीकरण

06/02/2018

प्रविष्टि

VDB-112872

EPSS

0.01079

गतिविधियाँ

बहुत कम

स्रोत

Do you know our Splunk app?

Download it now for free!