CVE-2016-3954 in Web2py정보

요약

\~에 의해 MITRE

web2py before 2.14.2 allows remote attackers to obtain the session_cookie_key value via a direct request to examples/simple_examples/status. NOTE: this issue can be leveraged by remote attackers to execute arbitrary code using CVE-2016-3957.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

예약하다

2016. 04. 05.

모더레이션

수락

항목

VDB-112874

EPSS

0.01411

출처

Want to stay up to date on a daily basis?

Enable the mail alert feature now!