Vulnerabilities > Web2Py > Web2Py > 1.28.0

DATE CVE VULNERABILITY TITLE RISK
2013-05-22 CVE-2013-2311 Cross-Site Scripting vulnerability in Web2Py
Cross-site scripting (XSS) vulnerability in static/js/share.js (aka the social bookmarking widget) in Web2py before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
web2py CWE-79
4.3
4.3