CVE-2023-22432

Published: Mar 5, 2023

Modified: Mar 7, 2025

PUBLISHED

Description

Open redirect vulnerability exists in web2py versions prior to 2.23.1. When using the tool, a web2py user may be redirected to an arbitrary website by accessing a specially crafted URL. As a result, the user may become a victim of a phishing attack.

Vendor	Product	Versions
web2py	web2py	affected `versions prior to 2.23.1`

References

http://web2py.com/

http://web2py.com/init/default/download

https://jvn.jp/en/jp/JVN78253670/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-22432

Description

Affected Products

References