Security Advisory

CVE-2026-25198

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-05 07:38:31

Last updated 2026-02-05 15:05:15

Assigner jpcert

State PUBLISHED

Description

web2py versions 2.27.1-stable+timestamp.2023.11.16.08.03.57 and prior contain an open redirect vulnerability. If this vulnerability is exploited, the user may be redirected to an arbitrary website when accessing a specially crafted URL. As a result, the user may become a victim of a phishing attack.

← Browse all CVEs View on cve.org ↗