Medium severity4.8NVD Advisory· Published Jan 11, 2017· Updated Jun 17, 2026
CVE-2016-4807
CVE-2016-4807
Description
Web2py versions 2.14.5 and below was affected by Reflected XSS vulnerability, which allows an attacker to perform an XSS attack on logged in user (admin).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
web2pyPyPI | <= 2.14.5 | — |
Affected products
1Patches
Vulnerability mechanics
References
5- packetstormsecurity.com/files/137070/Web2py-2.14.5-CSRF-XSS-Local-File-Inclusion.htmlnvdExploitThird Party AdvisoryVDB EntryWEB
- www.exploit-db.com/exploits/39821/nvdExploitThird Party AdvisoryVDB Entry
- github.com/advisories/GHSA-pvcp-73cg-6f77ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2016-4807ghsaADVISORY
- www.exploit-db.com/exploits/39821ghsaWEB
News mentions
0No linked articles in our index yet.