Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistFortinetCVELIST:CVE-2018-9186
HistoryMay 31, 2018 - 10:00 p.m.

CVE-2018-9186

2018-05-3122:00:00
fortinet
www.cve.org
3

EPSS

0.001

Percentile

32.7%

JSON

A cross-site scripting (XSS) vulnerability in Fortinet FortiAuthenticator in versions 4.0.0 to before 5.3.0 β€œCSRF validation failure” page allows attacker to execute unauthorized script code via inject malicious scripts in HTTP referer header.

CNA Affected

[
  {
    "product": "FortiAuthenticator",
    "vendor": "Fortinet, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "below 5.3.0 versions"
      }
    ]
  }
]

Related

fortinet 1
nvd 1
cve 1
prion 1
fortinet
fortinet
Potential XSS in "CSRF validation failure" page due to lack of referer sanitization
2018-05-29 00:00:00
nvd
nvd
CVE-2018-9186
2018-05-31 22:29:00
cve
cve
CVE-2018-9186
2018-05-31 22:29:00
prion
prion
Cross site scripting
2018-05-31 22:29:00

EPSS

0.001

Percentile

32.7%

JSON
Related for CVELIST:CVE-2018-9186
fortinet1nvd1cve1prion1