XSS Vulnerability in Disclaimer Description of a Replacement Message in FortiWeb

2020-03-0900:00:00

FortiGuard Labs

www.fortiguard.com

0.001 Low

EPSS

Percentile

29.3%

JSON

An improper neutralization of input vulnerability in FortiWeb may allow a remote authenticated attacker to perform a stored cross site scripting attack (XSS) via the Disclaimer Description of a Replacement Message.

CPENameOperatorVersion
fortiwebeq6.3.0
fortiwebeq6.2.2
fortiwebeq6.2.1
fortiwebeq6.2.0
fortiwebeq6.1.4
fortiwebeq6.1.3
fortiwebeq6.1.2
fortiwebeq6.1.1
fortiwebeq6.1.0
fortiwebeq6.0.8

Name	Operator	Version
fortiweb	eq	6.3.0
fortiweb	eq	6.2.2
fortiweb	eq	6.2.1
fortiweb	eq	6.2.0
fortiweb	eq	6.1.4
fortiweb	eq	6.1.3
fortiweb	eq	6.1.2
fortiweb	eq	6.1.1
fortiweb	eq	6.1.0
fortiweb	eq	6.0.8

Rows per page:

1-10 of 211

0.001 Low

EPSS

Percentile

29.3%

JSON

Related for FG-IR-20-001