CVE-2022-33146
Published
CVSS v3
6.1
MEDIUM
CVSS v2
5.8
MEDIUM
Affected
1
PROJECT
Description
Open redirect vulnerability in web2py versions prior to 2.22.5 allows a remote attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL.
Free and open source full-stack enterprise framework for agile development of secure database-driven web-based applications, written and programmable in Python.
GitHub