Reflected XSS Vulnerability in Web2py Versions 2.14.5 and Below: Admin User Attack

Reflected XSS Vulnerability in Web2py Versions 2.14.5 and Below: Admin User Attack

CVE-2016-4807 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Web2py versions 2.14.5 and below was affected by Reflected XSS vulnerability, which allows an attacker to perform an XSS attack on logged in user (admin).

Learn more about our User Device Pen Test.