Fortinet FortiWeb is a web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks, secures web applications and protects sensitive database content. A path traversal vulnerability exists that could be exploited by an authenticated attacker to gain unauthorized access to files and data via a specially crafted HTTP GET request.
CPE | Name | Operator | Version |
---|---|---|---|
fortinet fortiweb | eq | 6.4 | |
fortinet fortiweb >=7.0.0, | le | 7.0.1 | |
fortinet fortiweb >=6.3.6, | le | 6.3.18 |