CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-39391

Cross Site Scripting (XSS) vulnerability exists in the admin panel in Beego v2.0.1 via the URI path in an HTTP request, which is activated by administrators viewing the "Request Statistics" page.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 50.6%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://github.com/beego/beego
https://github.com/beego/beego/issues/4727
https://github.com/beego/beego
https://github.com/beego/beego/issues/4727

Products affected by CVE-2021-39391

Beego » Beego » Version: 2.0.1

cpe:2.3:a:beego:beego:2.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-39391

Products

Pricing

Contact Us