Description
An issue in beego v.2.2.0 and before allows a remote attacker to escalate privileges via the sendMail function located in beego/core/logs/smtp.go file
Remediation
References
Related Vulnerabilities
TYPO3 Deserialization of Untrusted Data Vulnerability (CVE-2020-11067)
WebLogic CVE-2020-14639 Vulnerability (CVE-2020-14639)
SharePoint CVE-2021-40483 Vulnerability (CVE-2021-40483)
Drupal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-13662)
WordPress Plugin Happy Addons for Elementor Pro Cross-Site Scripting (1.16.0)