Description


An issue in beego v.2.2.0 and before allows a remote attacker to escalate privileges via the getCacheFileName function in file.go file

Related CPE's


Vulnerable

Weaknesses



CWE-327


CWE-327CWE-328

CVSS impact metrics


CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.8 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information


Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2024-07-31T21:15:17.733

3 months ago

Last modified

2024-08-15T13:11:07.570

2 months ago