Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-4806

Опубликовано: 11 янв. 2017
Источник: debian

Описание

Web2py versions 2.14.5 and below was affected by Local File Inclusion vulnerability, which allows a malicious intended user to read/access web server sensitive files.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
web2pyremovedpackage
web2pyignoredjessiepackage
web2pyno-dsawheezypackage

Примечания

  • https://github.com/web2py/web2py/issues/1585

  • https://github.com/web2py/web2py/issues/1316

  • https://github.com/web2py/web2py/commit/1b42fe65472930668435007cfcb077207051ba34

Связанные уязвимости

ubuntu логотип

CVE-2016-4806

CVSS3: 7.5
ubuntu
около 9 лет назад

Web2py versions 2.14.5 and below was affected by Local File Inclusion vulnerability, which allows a malicious intended user to read/access web server sensitive files.

nvd логотип

CVE-2016-4806

CVSS3: 7.5
nvd
около 9 лет назад

Web2py versions 2.14.5 and below was affected by Local File Inclusion vulnerability, which allows a malicious intended user to read/access web server sensitive files.

github логотип

GHSA-33f5-5f45-vcqg

CVSS3: 7.5
github
больше 3 лет назад

Web2py versions 2.14.5 and below was affected by Local File Inclusion vulnerability, which allows a malicious intended user to read/access web server sensitive files.