{"vulnerability": "CVE-2023-22432", "sightings": [{"uuid": "1b6617ee-ee15-488b-9729-5c058d3d822a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22432", "type": "seen", "source": "Telegram/jf7jU7xMmyEB4CDjP2Y3-UfhN5dConLM0uGSzmI33Gp0lvEm", "content": "", "creation_timestamp": "2025-03-08T04:36:10.000000Z"}, {"uuid": "04f0c15a-790e-48d2-80cb-67bdc9d494b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22432", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6903", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-22432\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Open redirect vulnerability exists in web2py versions prior to 2.23.1. When using the tool, a web2py user may be redirected to an arbitrary website by accessing a specially crafted URL. As a result, the user may become a victim of a phishing attack.\n\ud83d\udccf Published: 2023-03-05T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-07T21:45:54.676Z\n\ud83d\udd17 References:\n1. http://web2py.com/\n2. http://web2py.com/init/default/download\n3. https://jvn.jp/en/jp/JVN78253670/", "creation_timestamp": "2025-03-07T22:35:54.000000Z"}, {"uuid": "f3ae98c1-c458-47f6-90ea-a06889d1577f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22432", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/3877", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aPoC for CVE-2023-22432 (web2py)\nURL\uff1ahttps://github.com/Abdibimantara/Maldoc-Analysis\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-03-06T05:53:07.000000Z"}, {"uuid": "d609427a-1eb9-46d7-b71c-f929725388de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22432", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/3876", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aPoC for CVE-2023-22432 (web2py)\nURL\uff1ahttps://github.com/aeyesec/CVE-2023-22432\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-03-06T05:29:27.000000Z"}, {"uuid": "0ffd21ce-a36f-4ca5-a7d0-d7ee405fab7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22432", "type": "seen", "source": "https://t.me/cibsecurity/59439", "content": "\u203c CVE-2023-22432 \u203c\n\nOpen redirect vulnerability exists in web2py versions prior to 2.23.1. When using the tool, a web2py user may be redirected to an arbitrary website by accessing a specially crafted URL. As a result, the user may become a victim of a phishing attack.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-06T02:37:20.000000Z"}]}