Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2973 matches found

Prion
Prionadded 2017/09/12 2:29 a.m.22 views

Cross site scripting

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.2.0 through 5.2.11 and 5.4.0 through 5.4.4 allows attackers to execute unauthorized code or commands via the "Groups" input while creating or editing User Groups...

3.5CVSS5.6AI score0.00305EPSS
Exploits0References3Affected Software1
Prion
Prionadded 2017/09/12 2:29 a.m.18 views

Cross site scripting

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and earlier allows attackers to Execute unauthorized code or commands via the action input during the activation of a FortiToken...

4.3CVSS6.1AI score0.02943EPSS
Exploits5References4Affected Software1
Prion
Prionadded 2017/09/12 2:29 a.m.20 views

Cross site scripting

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 through 5.4.4 and 5.6.0 allows attackers to execute unauthorized code or commands via the filter input in "Applications" under FortiView...

3.5CVSS5.7AI score0.11481EPSS
Exploits4References4Affected Software1
Prion
Prionadded 2017/09/12 2:29 a.m.16 views

Cross site scripting

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 through 5.4.4 allows attackers to execute unauthorized code or commands via 'Comments' while saving Config Revisions...

3.5CVSS5.6AI score0.00305EPSS
Exploits0References3Affected Software1
Prion
Prionadded 2017/09/12 2:29 a.m.19 views

Cross site scripting

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and earlier allows attackers to execute unauthorized code or commands via the Replacement Message HTML for SSL-VPN...

4.3CVSS6.2AI score0.0869EPSS
Exploits5References4Affected Software1
OSV
OSVadded 2017/09/12 2:29 a.m.1 views

CVE-2017-7735

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.2.0 through 5.2.11 and 5.4.0 through 5.4.4 allows attackers to execute unauthorized code or commands via the "Groups" input while creating or editing User Groups...

5.4CVSS5.9AI score0.00305EPSS
Exploits0References3
OSV
OSVadded 2017/09/12 2:29 a.m.2 views

CVE-2017-3131

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 through 5.4.4 and 5.6.0 allows attackers to execute unauthorized code or commands via the filter input in "Applications" under FortiView...

5.4CVSS5.9AI score
Exploits0References4
OSV
OSVadded 2017/09/12 2:29 a.m.1 views

CVE-2017-3133

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and earlier allows attackers to execute unauthorized code or commands via the Replacement Message HTML for SSL-VPN...

6.1CVSS5.9AI score
Exploits0References4
NVD
NVDadded 2017/09/12 2:29 a.m.16 views

CVE-2017-3133

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and earlier allows attackers to execute unauthorized code or commands via the Replacement Message HTML for SSL-VPN...

6.1CVSS6.2AI score0.0869EPSS
Exploits5References4
Vulnrichment
Vulnrichmentadded 2017/09/12 2:0 a.m.12 views

CVE-2017-3133

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and earlier allows attackers to execute unauthorized code or commands via the Replacement Message HTML for SSL-VPN...

7AI score0.0869EPSS
Exploits5References4
CVE
CVEadded 2017/09/12 2:0 a.m.91 views

CVE-2017-3132

CVE-2017-3132 is a Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and earlier, exploitable via the action input during FortiToken activation. The NVD record lists CVSS 3.0 base score 6.1 (network, low attack complexity, user interaction required) and notes partial integrity...

6.1CVSS6AI score0.02943EPSS
Exploits5References4Affected Software1
Cvelist
Cvelistadded 2017/09/12 2:0 a.m.26 views

CVE-2017-7735

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.2.0 through 5.2.11 and 5.4.0 through 5.4.4 allows attackers to execute unauthorized code or commands via the "Groups" input while creating or editing User Groups...

5.6AI score0.00305EPSS
Exploits0References3
Cvelist
Cvelistadded 2017/09/12 2:0 a.m.24 views

CVE-2017-7734

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 through 5.4.4 allows attackers to execute unauthorized code or commands via 'Comments' while saving Config Revisions...

5.6AI score0.00305EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2017/09/12 2:0 a.m.15 views

CVE-2017-7735

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.2.0 through 5.2.11 and 5.4.0 through 5.4.4 allows attackers to execute unauthorized code or commands via the "Groups" input while creating or editing User Groups...

6.8AI score0.00305EPSS
Exploits0References3
CVE
CVEadded 2017/09/12 2:0 a.m.57 views

CVE-2017-7735

CVE-2017-7735 is a publicly documented Cross‑Site Scripting (XSS) vulnerability affecting Fortinet FortiOS. Affected versions are FortiOS 5.2.0–5.2.11 and 5.4.0–5.4.4. The root cause is improper validation of user-supplied input to the Groups field when creating or editing User Groups, allowing a...

5.4CVSS5.6AI score0.00305EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2017/09/12 2:0 a.m.62 views

CVE-2017-7734

CVE-2017-7734 is a Fortinet FortiOS XSS vulnerability affecting FortiOS 5.4.0–5.4.4, enabling an authenticated attacker to execute script code via the Comments field during Config Revisions save due to improper input validation. Connected sources corroborate the same description across NVD/NVD mi...

5.4CVSS5.6AI score0.00305EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2017/09/12 2:0 a.m.94 views

CVE-2017-3133

Fortinet FortiOS

6.1CVSS6.2AI score0.0869EPSS
Exploits5References4Affected Software1
Cvelist
Cvelistadded 2017/09/12 2:0 a.m.22 views

CVE-2017-3132

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and earlier allows attackers to Execute unauthorized code or commands via the action input during the activation of a FortiToken...

6.1AI score0.02943EPSS
Exploits5References4
Vulnrichment
Vulnrichmentadded 2017/09/12 2:0 a.m.11 views

CVE-2017-7734

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 through 5.4.4 allows attackers to execute unauthorized code or commands via 'Comments' while saving Config Revisions...

6.8AI score0.00305EPSS
Exploits0References3
CVE
CVEadded 2017/09/12 2:0 a.m.91 views

CVE-2017-3131

CVE-2017-3131 : Fortinet FortiOS versions 5.4.0–5.4.4 and 5.6.0 are affected by a cross‑site scripting (XSS) vulnerability in the FortiView Applications filter input, allowing an attacker to execute arbitrary JavaScript. The issue is tied to FortiOS’s FortiView FortiView filter handling and is ev...

5.4CVSS5.8AI score0.11481EPSS
Exploits4References4Affected Software1
Rows per page
Query Builder