Computer Security
[EN] no-pyccku

Fortinet FortiAnalyzer and FortiManager crossite scripting
SecurityVulns ID:14476
Threat Level:
Description:Crossite scripting in web interface.
Affected:FORTINET : FortiManager 5.2
 FORTINET : FortiAnalyzer 5.2
CVE:CVE-2015-3620 (Cross-site scripting (XSS) vulnerability in the advanced dataset reports page in Fortinet FortiAnalyzer 5.0.0 through 5.0.10 and 5.2.0 through 5.2.1 and FortiManager 5.0.3 through 5.0.10 and 5.2.0 through 5.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.)
Original documentdocumentVulnerability Lab, Fortinet FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Vulnerability (12.05.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod