The following vulnerability was published for webpy.
CVE-2025-3818[0]:
| A vulnerability, which was classified as critical, was found in
| webpy web.py 0.70. Affected is the function
| PostgresDB._process_insert_query of the file web/db.py. The
| manipulation of the argument seqname leads to sql injection. It is
| possible to launch the attack remotely. The exploit has been
| disclosed to the public and may be used.
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.