CVE 2016-3954
web2py before 2.14.2 allows remote attackers to obtain the session_cookie_key value via a direct request to examples/
See the
CVE page on Mitre.org
for more details.
web2py before 2.14.2 allows remote attackers to obtain the session_cookie_key value via a direct request to examples/