Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Beego Framework Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2021-39391 - Vulnerability Database
Beego Framework

Beego Framework Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2021-39391

Medium
Reference: CVE-2021-39391
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-39391
Title: Beego Framework Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:

Cross Site Scripting (XSS) vulnerability exists in the admin panel in Beego v2.0.1 via the URI path in an HTTP request which is activated by administrators viewing the quotRequest Statisticsquot page.