Lucene search
K

178 matches found

Nuclei
Nuclei
added 11 hours ago68 views

Web2py URL - Open Redirect

Open redirect vulnerability exists in web2py versions prior to 2.23.1. When using the tool, a web2py user may be redirected to an arbitrary website by accessing a specially crafted URL. As a result, the user may become a victim of a phishing attack. id: CVE-2023-22432 info: name: Web2py URL - Ope...

6.1CVSS6.4AI score0.02382EPSS
Exploits1References5
OSV
OSV
added 2026/06/29 11:50 a.m.6 views

PYSEC-2026-570 web2py remote code execution via hardcoded encryption key in session.connect function

The sample web application in web2py before 2.14.2 might allow remote attackers to execute arbitrary code via vectors involving use of a hardcoded encryption key when calling the session.connect function...

9.8CVSS7.2AI score0.0499EPSS
Exploits2References9
OSV
OSV
added 2026/06/29 11:50 a.m.7 views

PYSEC-2026-569 web2py is vulnerable to password brute-force attack

web2py before 2.14.6 does not properly check if a host is denied before verifying passwords, allowing a remote attacker to perform brute-force attacks...

9.8CVSS7.3AI score0.02587EPSS
Exploits0References7
EUVD
EUVD
added 2026/04/09 3:35 p.m.3 views

EUVD-2026-20890

web2py has an Open Redirect Vulnerability...

5.3CVSS5.9AI score0.00452EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2026/02/09 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-25198

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - web2py versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and prior contain an open redirect vulnerability. If this vulnerability is exploited, the user may b...

5.1CVSS5.8AI score0.00294EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/02/06 1:30 p.m.10 views

CVE-2026-25198

web2py versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and prior contain an open redirect vulnerability. If this vulnerability is exploited, the user may be redirected to an arbitrary website when accessing a specially crafted URL. As a result, the user may become a victim of a phishing atta...

5.1CVSS5.5AI score0.00294EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/02/05 9:31 a.m.5 views

web2py has an Open Redirect Vulnerability

web2py versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and prior contain an Open Redirect vulnerability. If this vulnerability is exploited, the user may be redirected to an arbitrary website when accessing a specially crafted URL. As a result, the user may become a victim of a phishing atta...

5.1CVSS5.5AI score0.00294EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2026/02/05 9:31 a.m.4 views

GHSA-RF8C-3F5P-XV45 web2py has an Open Redirect Vulnerability

web2py versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and prior contain an Open Redirect vulnerability. If this vulnerability is exploited, the user may be redirected to an arbitrary website when accessing a specially crafted URL. As a result, the user may become a victim of a phishing atta...

5.1CVSS5.3AI score0.00294EPSS
Exploits0References6
NVD
NVD
added 2026/02/05 8:16 a.m.10 views

CVE-2026-25198

web2py versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and prior contain an open redirect vulnerability. If this vulnerability is exploited, the user may be redirected to an arbitrary website when accessing a specially crafted URL. As a result, the user may become a victim of a phishing atta...

5.1CVSS0.00294EPSS
Exploits0References4
OSV
OSV
added 2026/02/05 8:16 a.m.4 views

UBUNTU-CVE-2026-25198

web2py versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and prior contain an open redirect vulnerability. If this vulnerability is exploited, the user may be redirected to an arbitrary website when accessing a specially crafted URL. As a result, the user may become a victim of a phishing atta...

5.1CVSS5.9AI score0.00294EPSS
Exploits0References6
EUVD
EUVD
added 2026/02/05 7:38 a.m.10 views

EUVD-2026-5541

web2py versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and prior contain an open redirect vulnerability. If this vulnerability is exploited, the user may be redirected to an arbitrary website when accessing a specially crafted URL. As a result, the user may become a victim of a phishing atta...

5.1CVSS5.5AI score0.00294EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/02/05 7:38 a.m.28 views

CVE-2026-25198

web2py versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and prior contain an open redirect vulnerability. If this vulnerability is exploited, the user may be redirected to an arbitrary website when accessing a specially crafted URL. As a result, the user may become a victim of a phishing atta...

5.1CVSS0.00294EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/05 7:38 a.m.5 views

CVE-2026-25198

web2py versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and prior contain an open redirect vulnerability. If this vulnerability is exploited, the user may be redirected to an arbitrary website when accessing a specially crafted URL. As a result, the user may become a victim of a phishing atta...

5.1CVSS5.5AI score0.00294EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/02/05 7:38 a.m.6 views

CVE-2026-25198

web2py versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and prior contain an open redirect vulnerability. If this vulnerability is exploited, the user may be redirected to an arbitrary website when accessing a specially crafted URL. As a result, the user may become a victim of a phishing atta...

5.1CVSS5.5AI score0.00294EPSS
Exploits0References4
CVE
CVE
added 2026/02/05 7:38 a.m.20 views

CVE-2026-25198

CVE-2026-25198 affects web2py, specifically versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and earlier, with an open redirect vulnerability. The underlying issue allows an attacker to redirect a user to an arbitrary website via specially crafted URLs, enabling phishing risk. The connected d...

5.1CVSS5.5AI score0.00294EPSS
Exploits0References4
OSV
OSV
added 2026/02/05 7:38 a.m.8 views

CVE-2026-25198

web2py versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and prior contain an open redirect vulnerability. If this vulnerability is exploited, the user may be redirected to an arbitrary website when accessing a specially crafted URL. As a result, the user may become a victim of a phishing atta...

5.1CVSS5.2AI score0.00294EPSS
Exploits0References6
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/02/05 6:1 a.m.6 views

web2py vulnerable to open redirect

Overview web2py contains the following vulnerability. Open redirect CWE-601 - CVE-2026-25198 Shiga Takuma of BroadBand Security, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact When accessing a speciall...

5.1CVSS5.7AI score0.00294EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/02/05 12:0 a.m.6 views

web2py 输入验证错误漏洞

Web2py is an open-source, free, and open-source full-stack enterprise framework developed by Web2py. It is used for developing secure, database-driven web applications in an agile manner. Versions of Web2py prior to 2.27.1-stable+timestamp.2023.11.16.08.03.57 contained a vulnerability related to...

5.1CVSS5.8AI score0.00294EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/02/05 12:0 a.m.4 views

CVE-2026-25198

web2py versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and prior contain an open redirect vulnerability. If this vulnerability is exploited, the user may be redirected to an arbitrary website when accessing a specially crafted URL. As a result, the user may become a victim of a phishing atta...

5.1CVSS5.9AI score0.00294EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/02/05 12:0 a.m.6 views

PT-2026-6280

Name of the Vulnerable Software and Affected Versions web2py versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and prior Description The software contains an open redirect issue. Successful exploitation could allow a user to be redirected to a website chosen by an attacker when accessing a...

5.1CVSS5.4AI score0.00294EPSS
Exploits0References10
Rows per page
Query Builder