Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5892 matches found

NVD
NVDadded 2026/04/14 4:16 p.m.1 views

CVE-2026-39815

A improper neutralization of special elements used in an sql command 'sql injection' vulnerability in Fortinet FortiDDoS-F 7.2.1 through 7.2.2 may allow attacker to execute unauthorized code or commands via sending crafted HTTP requests...

8.8CVSS0.00359EPSS
Exploits0References1
NVD
NVDadded 2026/04/14 4:16 p.m.1 views

CVE-2026-39809

A improper neutralization of special elements used in an sql command 'sql injection' vulnerability in Fortinet FortiClientEMS 7.4.0 through 7.4.5, FortiClientEMS 7.2.0 through 7.2.12, FortiClientEMS 7.0 all versions may allow attacker to execute unauthorized code or commands via sending crafted...

6.7CVSS0.00133EPSS
Exploits0References1
NVD
NVDadded 2026/04/14 4:16 p.m.3 views

CVE-2026-39814

A relative path traversal vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.2, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4.1 through 7.4.12, FortiWeb 7.2.7 through 7.2.12, FortiWeb 7.0.10 through 7.0.12 may allow attacker to execute unauthorized code or commands via...

6.7CVSS0.00139EPSS
Exploits0References1
NVD
NVDadded 2026/04/14 4:16 p.m.4 views

CVE-2026-39813

A path traversal: '../filedir' vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8 may allow attacker to escalation of privilege via specially crafted HTTP requests...

9.8CVSS0.18703EPSS
Exploits2References1
NVD
NVDadded 2026/04/14 4:16 p.m.3 views

CVE-2026-39808

A improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.8 may allow attacker to execute unauthorized code or commands via...

9.8CVSS0.66168EPSS
Exploits6References2
NVD
NVDadded 2026/04/14 4:16 p.m.3 views

CVE-2026-25691

A improper limitation of a pathname to a restricted directory 'path traversal' vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox 4.2 all versions, FortiSandbox Cloud 5.0.4, FortiSandbox PaaS 5.0.4 may allow a privileged attacker with...

6.7CVSS0.00456EPSS
Exploits0References1
NVD
NVDadded 2026/04/14 4:16 p.m.1 views

CVE-2025-61624

An Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' CWE-22 vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4, FortiOS 7.4.0 through 7.4.9, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.7.0, FortiPAM 1.6 all versions,...

6.5CVSS0.00429EPSS
Exploits0References2
NVD
NVDadded 2026/04/14 4:16 p.m.6 views

CVE-2025-53847

A missing authentication for critical function vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0.0 through 7.0.17, FortiOS 6.4 all versions, FortiOS 6.2.9 through 6.2.17 allows attacker to execute unauthorized code or...

8.8CVSS0.00283EPSS
Exploits0References2
CVE
CVEadded 2026/04/14 3:39 p.m.16 views

CVE-2025-61624

Technical details about CVE-2025-61624 are not publicly provided in the supplied documents. No affected products, versions, root cause, or remediation specifics are disclosed here. Monitor for updates.

6.5CVSS5.9AI score0.00429EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/14 3:39 p.m.1 views

CVE-2025-61624

An Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' CWE-22 vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4, FortiOS 7.4.0 through 7.4.9, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.7.0, FortiPAM 1.6 all versions,...

6CVSS5.9AI score0.00429EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/04/14 3:39 p.m.1 views

CVE-2025-68649

An improper limitation of a pathname to a restricted directory 'path traversal' vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.4, FortiAnalyzer 7.4.0 through 7.4.7, FortiAnalyzer 7.2 all versions, FortiAnalyzer 7.0 all versions, FortiAnalyzer Cloud 7.6.0 through 7.6.4, FortiAnalyzer...

6CVSS5.8AI score0.00413EPSS
Exploits0References1
CVE
CVEadded 2026/04/14 3:39 p.m.9 views

CVE-2026-21741

Fortinet FortiNAC-F is affected by an Open Redirect (CWE-601) vulnerability across FortiNAC-F 7.6.0–7.6.5, FortiNAC-F 7.4 all versions, and FortiNAC-F 7.2 all versions. The issue allows a remote privileged attacker with the system administrator role to redirect users to an arbitrary website by up...

4.8CVSS5.9AI score0.00209EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2026/04/14 3:38 p.m.27 views

CVE-2026-39813

A path traversal: '../filedir' vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8 may allow attacker to escalation of privilege via specially crafted HTTP requests...

9.8CVSS0.18703EPSS
Exploits2References1
Vulnrichment
Vulnrichmentadded 2026/04/14 3:38 p.m.2 views

CVE-2026-39813

A path traversal: '../filedir' vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8 may allow attacker to escalation of privilege via specially crafted HTTP requests...

9.8CVSS5.8AI score0.18703EPSS
Exploits2References1
Cvelist
Cvelistadded 2026/04/14 3:38 p.m.22 views

CVE-2025-61848

An improper neutralization of special elements used in an sql command 'sql injection' vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.4, FortiAnalyzer 7.4.0 through 7.4.8, FortiAnalyzer 7.2 all versions, FortiAnalyzer 7.0 all versions, FortiAnalyzer Cloud 7.6.0 through 7.6.4,...

7.2CVSS0.00511EPSS
Exploits0References1
CVE
CVEadded 2026/04/14 3:38 p.m.6 views

CVE-2026-39815

Fortinet FortiDDoS-F versions 7.2.1–7.2.2 are described as vulnerable to an improper neutralization of special elements used in an SQL command (SQL injection). The issue could allow an attacker to execute unauthorized code or commands via an attack vector. The connected documents do not provide e...

8.8CVSS6AI score0.00359EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2026/04/14 3:38 p.m.21 views

CVE-2026-39815

A improper neutralization of special elements used in an sql command 'sql injection' vulnerability in Fortinet FortiDDoS-F 7.2.1 through 7.2.2 may allow attacker to execute unauthorized code or commands via sending crafted HTTP requests...

8.8CVSS0.00359EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/04/14 3:38 p.m.1 views

CVE-2026-39815

A improper neutralization of special elements used in an sql command 'sql injection' vulnerability in Fortinet FortiDDoS-F 7.2.1 through 7.2.2 may allow attacker to execute unauthorized code or commands via sending crafted HTTP requests...

8.8CVSS6AI score0.00359EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/04/14 3:38 p.m.0 views

CVE-2026-39815

A improper neutralization of special elements used in an sql command 'sql injection' vulnerability in Fortinet FortiDDoS-F 7.2.1 through 7.2.2 may allow attacker to execute unauthorized code or commands via sending crafted HTTP requests...

8.8CVSS6AI score0.00359EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/14 3:38 p.m.0 views

CVE-2026-39810

A use of hard-coded cryptographic key vulnerability in Fortinet FortiClientEMS 7.4.0 through 7.4.5 may allow attacker to information disclosure via decrypting database dump...

6CVSS5.8AI score0.001EPSS
Exploits0References1
Rows per page
Query Builder