Description
An issue in beego v.2.2.0 and before allows a remote attacker to escalate privileges via the getCacheFileName function in file.go file
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Statistics Multiple Vulnerabilities (13.1.5)
WordPress Plugin Zephyr Project Manager Cross-Site Scripting (3.2.40)
Drupal Insufficient Verification of Data Authenticity Vulnerability (CVE-2016-9450)
WordPress Plugin The Official Facebook Chat Security Bypass (1.5)
PHP Deserialization of Untrusted Data Vulnerability (CVE-2016-7124)