Fortinet FortiWeb Command Injection Vulnerability

Fortinet FortiWeb is a web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks, secures web applications and protects sensitive database content. management interface is vulnerable to command injection, which can be exploited by attackers to execute unauthorized code or commands via carefully crafted HTTP request parameters.