CVE-2026-25198
Published
CVSS v3
N/A
CVSS v2
N/A
Affected
1
PROJECT
Description
web2py versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and prior contain an open redirect vulnerability. If this vulnerability is exploited, the user may be redirected to an arbitrary website when accessing a specially crafted URL. As a result, the user may become a victim of a phishing attack.
Free and open source full-stack enterprise framework for agile development of secure database-driven web-based applications, written and programmable in Python.
GitHub