Cross Site Scripting (XSS) vulnerability exists in the admin panel in Beego v2.0.1 via the URI path in an HTTP request, which is activated by administrators viewing the "Request Statistics" page.
References
Link | Resource |
---|---|
https://github.com/beego/beego | Third Party Advisory |
https://github.com/beego/beego/issues/4727 | Exploit Issue Tracking Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-09-14T17:27:23
Updated: 2021-09-14T17:27:23
Reserved: 2021-08-23T00:00:00
Link: CVE-2021-39391
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-09-14T18:15:08.900
Modified: 2021-09-24T18:49:22.803
Link: CVE-2021-39391
JSON object: View
Redhat Information
No data.
CWE