EPSS
Percentile
66.2%
web2py is vulnerable to Open Redirect. A remote attacker is able to redirect the user to an arbitrary website by providing a specially crafted URL, which can result in a phishing attack.
web2py.com/
web2py.com/init/default/download
github.com/web2py/web2py/commit/b24ace2eb5c267357f6ef6c4857ab651bbdb7af5
github.com/web2py/web2py/pull/2453
jvn.jp/en/jp/JVN78253670/
jvndb.jvn.jp/en/contents/2023/JVNDB-2023-000020.html