5 matches found
PT-2025-13800 · Beego · Beego
Name of the Vulnerable Software and Affected Versions: Beego versions prior to 2.3.6 Description: Beego is an open-source web framework for the Go programming language. A Cross-Site Scripting XSS vulnerability exists in the RenderForm function due to improper HTML escaping of user-controlled data...
Improper Link Resolution Before File Access ('Link Following')
An issue was discovered in file profile.go in function GetCPUProfile in beego through 2.0.2, allows attackers to launch symlink attacks locally...
Improper Link Resolution Before File Access ('Link Following')
An issue was discovered in file profile.go in function MemProf in beego through 2.0.2, allows attackers to launch symlink attacks locally...
Improper Link Resolution Before File Access ('Link Following')
An issue was discovered in file profile.go in function GetCPUProfile in beego through 2.0.2, allows attackers to launch symlink attacks locally...
Improper Link Resolution Before File Access ('Link Following')
An issue was discovered in file profile.go in function MemProf in beego through 2.0.2, allows attackers to launch symlink attacks locally...