Vulnerabilities > Web2Py > Web2Py > 2.15.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-10-16 | CVE-2023-45158 | OS Command Injection vulnerability in Web2Py An OS command injection vulnerability exists in web2py 2.24.1 and earlier. | 9.8 |
2023-03-06 | CVE-2023-22432 | Open Redirect vulnerability in Web2Py Open redirect vulnerability exists in web2py versions prior to 2.23.1. | 6.1 |
2022-06-27 | CVE-2022-33146 | Open Redirect vulnerability in Web2Py Open redirect vulnerability in web2py versions prior to 2.22.5 allows a remote attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL. | 6.1 |