Computer Security
[EN] securityvulns.ru no-pyccku


Fortinet FortiAnalyzer and FortiManager crossite scripting
Published:12.05.2015
Source:
SecurityVulns ID:14476
Type:remote
Threat Level:
5/10
Description:Crossite scripting in web interface.
Affected:FORTINET : FortiManager 5.2
 FORTINET : FortiAnalyzer 5.2
CVE:CVE-2015-3620 (Cross-site scripting (XSS) vulnerability in the advanced dataset reports page in Fortinet FortiAnalyzer 5.0.0 through 5.0.10 and 5.2.0 through 5.2.1 and FortiManager 5.0.3 through 5.0.10 and 5.2.0 through 5.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.)
Original documentdocumentVulnerability Lab, Fortinet FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Vulnerability (12.05.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod