blob: ec6e0f6543642e40b0a46ba63423c64d92c3a066 [file] [log] [blame]
module: github.com/astaxie/beego
package: github.com/astaxie/beego/session
versions:
- fixed: v1.12.2
description: |
An attacker can craft a malicious URL which lead to XSS due to
usage of unsantized user controlled URL parameters.
published: 2021-04-14T12:00:00Z
credit: '@Kevil-hui'
links:
pr: https://github.com/beego/beego/pull/4018
commit: https://github.com/beego/beego/commit/6eeea141d885c16c2a01349d57da62c6379a45a2
context:
- https://github.com/beego/beego/issues/3983