Lucene search
GoogleOSV:CVE-2016-3953HistoryFeb 06, 2018 - 6:29 p.m.
CVE-2016-3953
2018-02-0618:29:00
Google
osv.dev
3
The sample web application in web2py before 2.14.2 might allow remote attackers to execute arbitrary code via vectors involving use of a hardcoded encryption key when calling the session.connect function.
Related
osv
osv
web2py remote code execution via hardcoded encryption key in session.connect function
2022-05-14 00:57:47
CVE-2016-3957
2018-02-06 18:29:00
web2py exposure of sensitive information
2022-05-14 00:57:47
nessus
nessus
Ubuntu 16.04 LTS : web2py vulnerabilities (USN-4030-1)
2019-06-24 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4030-1)
2019-06-22 00:00:00
prion
prion
Hardcoded credentials
2018-02-06 18:29:00
Design/Logic Flaw
2018-02-06 18:29:00
Design/Logic Flaw
2018-02-06 18:29:00
ubuntu
ubuntu
web2py vulnerabilities
2019-06-21 00:00:00
cve
cve
ubuntucve
ubuntucve
github
github
web2py remote code execution via hardcoded encryption key in session.connect function
2022-05-14 00:57:47
web2py exposure of sensitive information
2022-05-14 00:57:47
cvelist
cvelist
nvd
nvd