CVE-2013-7181

2014-02-04T05:39:00
ID CVE-2013-7181
Type cve
Reporter cve@mitre.org
Modified 2015-07-27T16:12:00

Description

Cross-site scripting (XSS) vulnerability in user/ldap_user/add in Fortinet FortiOS 5.0.3 allows remote attackers to inject arbitrary web script or HTML via the filter parameter. Per: http://www.kb.cert.org/vuls/id/593118

"Fortinet Fortiweb 5.0.3, and possibly earlier versions, contains a cross-site scripting vulnerability. (CWE-79)"