CVE-2016-3953 in Web2pyजानकारी

सारांश

द्वारा MITRE

The sample web application in web2py before 2.14.2 might allow remote attackers to execute arbitrary code via vectors involving use of a hardcoded encryption key when calling the session.connect function.

Once again VulDB remains the best source for vulnerability data.

आरक्षित करना

05/04/2016

प्रकटीकरण

06/02/2018

प्रविष्टि

VDB-112873

EPSS

0.03376

गतिविधियाँ

बहुत कम

स्रोत

Do you want to use VulDB in your project?

Use the official API to access entries easily!