Description

The File Session Manager in Beego 1.10.0 allows local users to read session files because of weak permissions for individual files.

Remediation

References

CVE-2019-16355

Related Vulnerabilities

WordPress Plugin Meta Box-WordPress Custom Fields Framework Arbitrary File Deletion (4.16.2)

WordPress Plugin WP Maintenance Mode Remote Code Execution (2.0.6)

Oracle Database Server CVE-2006-0259 Vulnerability (CVE-2006-0259)

Oracle JRE CVE-2022-21624 Vulnerability (CVE-2022-21624)

MySQL CVE-2022-21427 Vulnerability (CVE-2022-21427)

Severity

Medium

Classification

CVE-2019-16355 CWE-276 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities